News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

Khalid Hanif's Blog:
Problems with Simple Testing
April 29, 2006 @ 07:48:16

The "Jelly & Custard" blog has a good reminder today for both those experienced with templating in PHP and those just starting out - be careful how you include.

Its quite common for people to have one main template, and 'include' their content into the main content area. This works well for small informational sites, where the main content is the bit that changes on each page.

There's nothing wrong with this as such, however, the issue is when the input isn't validated.

He gives one or two examples of how it's usually implemented, how it can be exploited, and two ways to help combat the problem - a php.ini setting and some simple input validation.

0 comments voice your opinion now!
simple templating problem input validation simple templating problem input validation


blog comments powered by Disqus

Similar Posts

Brian Moon's Blog: Wordcraft, a simple PHP blogging application

Eran Galperin's Blog: On the pitfalls of date validation with the Zend Framework

Sean Coates' Blog: PHP as a templating language

PHPit.net: Building a simple MVC system with PHP5

Jonnay\'s Blog: Introducing BunnyRegex - easy regular expressions, and mini-languages inside of PHP.


Community Events





Don't see your event here?
Let us know!


api install unittest library release code podcast series introduction language laravel configure community framework threedevsandamaybe list developer interview wordpress bugfix

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework