PHP :: Bug #11959 :: security

Bug #11959	security
Submitted:	2001-07-08 08:32 UTC	Modified:	2010-12-20 14:38 UTC
From:	vmarco at hotmail dot com	Assigned:
Status:	Not a bug	Package:	*General Issues
PHP Version:	4.0.6	OS:
Private report:	No	CVE-ID:	None

View Add Comment Developer Edit

[2001-07-08 08:32 UTC] vmarco at hotmail dot com

if i put this as address
http://www.php.net/source.php?url=www.eldalie.it/index.php

explorer give me in output this (excuse me for my ba english)




<?php
/* if you're reading this, it isn't because you've found a security hole.
   this is an open source website. read and learn! */

require_once 'prepend.inc';

$SIDEBAR_DATA = '
<h3>What is PHP?</h3>

<p>
PHP is a server-side, cross-platform, HTML embedded scripting
language.  If you are completely new to PHP and want to get some idea
of how it works, have a look at the ' . make_link("/tut.php", "introductory tutorial") . '.
Once you get beyond that, have a look at the example archive sites and some of the 
other resources available in the ' . make_link("/links.php", "links section") . '.
</p>

<p>
PHP is a project of the '.make_link("http://www.apache.org/","

Patches

Add a Patch

Pull Requests

Add a Pull Request

History

AllCommentsChangesGit/SVN commitsRelated reports

[2001-07-08 15:12 UTC] jimw@php.net

it is just ignoring the hostname. that's the source of our index.php.

[2010-12-20 14:38 UTC] jani@php.net

-Package: unknown +Package: *General Issues

	php.net \| support \| documentation \| report a bug \| advanced search \| search howto \| statistics \| random bug \| login
go to bug id or search bugs for


Copyright © 2001-2024 The PHP Group All rights reserved.	Last updated: Tue Apr 16 19:01:31 2024 UTC