Secure Enough?
Posted: Sun May 11, 2003 3:45 pm
If I have a template that uses an URL like
http//../template.php?page=newpage.php
is checking to ensure the file exist secure enough to stop harmful hacking to the server?
http//../template.php?page=newpage.php
is checking to ensure the file exist secure enough to stop harmful hacking to the server?
Code: Select all
if ( !IsSet( $_GETї'page'] ) )$page = 'home.php';
if ( file_exists( $page ) ) {
webstuff here
} else {
echo "NOT Allowed";
}