|
|
|
Re: smarty security problem: msg#00040php.tcphp
I am sure that many on thislist use Smarty. If you haven't seen this already, you probably should check out this notice Not to be picky, but the description of the problem at the URL noted is useless. http://smarty.php.net/ has a concise description of the problem. Basically, if you are using template security and allowing non-trusted users to write templates, those templates can be used to execute arbitrary PHP code. -Bob |
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| Previous by Date: | smarty security problem: 00040, SysAdmin |
|---|---|
| Next by Date: | Re: thoughts on php5?: 00040, Daniel J Cain Jr. |
| Previous by Thread: | smarty security problemi: 00040, SysAdmin |
| Next by Thread: | Internationalized string sorting: 00040, Bob Glamm |
| Indexes: | [Date] [Thread] [Top] [All Lists] |
|
|
| News | FAQ | advertise |