[thelist] PHP template code security sufficient?
P Chen
info at designbychen.com
Tue May 15 16:34:37 CDT 2007
I was reading an old tutorial on A List Apart regarding building a PHP
template based site using the following code to insert page-specific
content, but wasn't sure if this was sufficient in terms of security. I
don't know much about php security, so I'm hoping someone can shed light on
this piece of code, what it's vulnerable to, etc...
http://alistapart.com/articles/phpcms/
<div class="body">
<?php @ require_once ("$page.html"); ?>
</div>
Thanks,
Peter
More information about the thelist
mailing list