Hi, what are the possible security risks when including files based on post variables?
here's part of my script
Code:
---------
//PATH is the absolute path to the file... ex: /home/usr/public_html/site
$file = trim( $_POST['load'] );
$path = PATH . "/$file.php" http://bit.ly/mWPDbD
No comments:
Post a Comment