On Tuesday 03 June 2003 15:30, silent needle wrote:
> A: BACKGROUND(from php.net)
> int phpinfo ( [int what])
> Outputs a large amount of information about the current state of PHP.
And because of that amount of information it's a security issue if
phpinfo() is publically available at all, not just because you can do XSS
with it. (Of course it should be fixed anyway.)
> A: BACKGROUND(from php.net)
> int phpinfo ( [int what])
> Outputs a large amount of information about the current state of PHP.
And because of that amount of information it's a security issue if
phpinfo() is publically available at all, not just because you can do XSS
with it. (Of course it should be fixed anyway.)
Regards
Daniel
--
http://www.danielnaber.de
[ reply ]