darkfreaks Posted December 25, 2008 Share Posted December 25, 2008 so recently i found out the script i a using has globals running. i have secured some form input , but others confuse me because they call a variable before it is defined and it works. for example i have secured report.php which uses a function called systemmessage() to send messages to admin. i even opened up the function page and called another function clean_post_var() which is defined on the same function page and i still get injection like 4 pages worth in the database. any suggestions on how to find and eliminate the problem ??? Link to comment https://forums.phpfreaks.com/topic/138394-solved-best-way-to-fix-global-injection/ Share on other sites More sharing options...
revraz Posted December 25, 2008 Share Posted December 25, 2008 Turn off register globals and turn on error reporting and displaying, then fix all the undefined variables. Link to comment https://forums.phpfreaks.com/topic/138394-solved-best-way-to-fix-global-injection/#findComment-723600 Share on other sites More sharing options...
darkfreaks Posted December 25, 2008 Author Share Posted December 25, 2008 yeah that is going to be a pain in the butt but i guess i have to. thanks. Link to comment https://forums.phpfreaks.com/topic/138394-solved-best-way-to-fix-global-injection/#findComment-723601 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.