login | register | shoutbox

 What happened to the Messenger Plus! forums on msghelp.net?
Shoutbox » MsgHelp Archive » Skype & Technology » Tech Talk » Website being hacked

Website being hacked
Author: Message:
SikStyles
Senior Member
****

Avatar
DeathCult

Posts: 894
Reputation: 29
34 / Male / Flag
Joined: Jan 2005
O.P. RE: Website being hacked
quote:
Originally posted by segosa
Tell him this.

You can't go blindly using include() on anything the user can input into the URL. That's just asking for trouble.

If you give a URL to PHP's include() function and URL wrappers are enabled (most servers) then it'll download and include it into the page.

If you write a PHP script and stick it inside a .txt file, upload it to your server and put its URL into the xd= line the contents of that file will be executed on the victim's server with the httpd's permissions.

If he coded the site, or his friend did, then he should know that that's a security hole.

thanks a bunch Segosa :)
i'll tell him that :)
You're still breathing? Why?
Get off the cross, the wood is needed.
[Image: userbar.jpg]
09-03-2005 04:07 PM
Profile E-Mail PM Find Quote Report
« Next Oldest Return to Top Next Newest »

Messages In This Thread
Website being hacked - by SikStyles on 09-03-2005 at 02:54 PM
RE: Website being hacked - by segosa on 09-03-2005 at 03:39 PM
RE: Website being hacked - by mwe99 on 09-03-2005 at 03:44 PM
RE: Website being hacked - by SikStyles on 09-03-2005 at 03:49 PM
RE: RE: Website being hacked - by segosa on 09-03-2005 at 03:55 PM
RE: Website being hacked - by SikStyles on 09-03-2005 at 04:07 PM


Threaded Mode | Linear Mode
View a Printable Version
Send this Thread to a Friend
Subscribe | Add to Favorites
Rate This Thread:

Forum Jump:

Forum Rules:
You cannot post new threads
You cannot post replies
You cannot post attachments
You can edit your posts 		HTML is Off
myCode is On
Smilies are On
[img] Code is On