d.shankar Posted October 7, 2007 Author Share Posted October 7, 2007 Ok guys i will clearly provide the info Actually this consist of two files n1.php(the file to be included) & n2.php I need to detect an SQL Injection pattern i.e. If the user enters ' then an alert will be displayed It perfectly works when i just use include("n1.php") in n2.php , but matters get worse when i include along with localhost , i hope it is gettiing included but the alert is not displayed. n1.php <?php $pat1="/(?:^.?'$)|(?:.*(?:#|--)[^\w\s]*$)|(?:^.*\\'.+(?<!\\)')|(??:^['\\]*(?:[\d']+|[^']+'))+\s*(?:AND|OR|XOR|NAND|NOT|\|\||\&\&)[\s+]*[\d'[+&!-@])|(?:\^')|(?:^[\w\s-']+(?<=AND|OR|XOR|NAND|NOT|\|\||\&\&)\w+\()/"; $sub1='Detected classic SQL injection probings'; $pattern=array($pat1); $subject=array($sub1); foreach($_REQUEST as $key => $value) { //echo "The Key".$key; //echo "<br>"; //echo "The Value ".$value; for($x=0;$x<count($pattern);$x++) { if(preg_match($pattern[$x],$value)) { echo $subject[$x]; echo "<br>"; } else { } } } ?> n2.php <?php include("n1.php");//This works include("http://localhost/test/t1/n1.php");//This does not work ?> <html> <body> <form action=''> <input type='text' name='txt1'> <input type='submit' name='sub1'> </form> </body> </html> <?php ?> Inorder to chk the code pls try giving the input ' (single quote) Thanks a lot. Actually i am experiencing problem withthe above code right now. It works with normal include , but when i use localhost it doesnt work. Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 7, 2007 Author Share Posted October 7, 2007 I never imagined that this thread would be so tricky for phpfreaks !!! Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 8, 2007 Author Share Posted October 8, 2007 Any help ? Quote Link to comment Share on other sites More sharing options...
trq Posted October 8, 2007 Share Posted October 8, 2007 What is the output of... <?php echo ini_get('allow_url_fopen')."<br />"; echo ini_get('allow_url_include'); ?> Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 8, 2007 Author Share Posted October 8, 2007 Yea i have included both of them in my php.ini in the beggining itself. Quote Link to comment Share on other sites More sharing options...
trq Posted October 8, 2007 Share Posted October 8, 2007 That doesn't answer my question. Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 8, 2007 Author Share Posted October 8, 2007 Sorry. Both returned 1. Quote Link to comment Share on other sites More sharing options...
trq Posted October 8, 2007 Share Posted October 8, 2007 Then you should not have an issue. Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 8, 2007 Author Share Posted October 8, 2007 Ok guys i will clearly provide the info Actually this consist of two files n1.php(the file to be included) & n2.php I need to detect an SQL Injection pattern i.e. If the user enters ' then an alert will be displayed It perfectly works when i just use include("n1.php") in n2.php , but matters get worse when i include along with localhost , i hope it is gettiing included but the alert is not displayed. n1.php <?php $pat1="/(?:^.?'$)|(?:.*(?:#|--)[^\w\s]*$)|(?:^.*\\'.+(?<!\\)')|(??:^['\\]*(?:[\d']+|[^']+'))+\s*(?:AND|OR|XOR|NAND|NOT|\|\||\&\&)[\s+]*[\d'[+&!-@])|(?:\^')|(?:^[\w\s-']+(?<=AND|OR|XOR|NAND|NOT|\|\||\&\&)\w+\()/"; $sub1='Detected classic SQL injection probings'; $pattern=array($pat1); $subject=array($sub1); foreach($_REQUEST as $key => $value) { //echo "The Key".$key; //echo "<br>"; //echo "The Value ".$value; for($x=0;$x<count($pattern);$x++) { if(preg_match($pattern[$x],$value)) { echo $subject[$x]; echo "<br>"; } else { } } } ?> n2.php <?php include("n1.php");//This works include("http://localhost/test/t1/n1.php");//This does not work ?> <html> <body> <form action=''> <input type='text' name='txt1'> <input type='submit' name='sub1'> </form> </body> </html> <?php ?> Is there any problem with the for loop in n1.php ? Its acting strange when i add the http://localhost/ else it works fine. I dont know whats the actual problem. Quote Link to comment Share on other sites More sharing options...
MadTechie Posted October 8, 2007 Share Posted October 8, 2007 try passing the array via a function, instead of hoping iy will be picked up.. as for the SQL Injection.. you should always from from the basis, accept whats needed, not (in your case) don't accept the folloing.. Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 8, 2007 Author Share Posted October 8, 2007 as for the SQL Injection.. you should always from from the basis, accept whats needed, not (in your case) don't accept the folloing.. ?? You mean client side input restrictions using JS ? Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 8, 2007 Author Share Posted October 8, 2007 Where to pass the array using function ? Quote Link to comment Share on other sites More sharing options...
MadTechie Posted October 8, 2007 Share Posted October 8, 2007 ?? You mean client side input restrictions using JS ? Erm.. No.. Where to pass the array using function ? convert the code in the included file to a Fucntion or Class, then pass the values/array over, if you have problems add a var_dump($var) before calling the function and add it again in the function to compare.. Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 8, 2007 Author Share Posted October 8, 2007 Will chk tat now MT Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 8, 2007 Author Share Posted October 8, 2007 Here it is .. Now i get this Fatal error: Call to undefined function callup() Here are the files w1.php <?php function callup($value) { $pat1="/(?:^.?'$)|(?:.*(?:#|--)[^\w\s]*$)|(?:^.*\\'.+(?<!\\)')|(??:^['\\]*(?:[\d']+|[^']+'))+\s*(?:AND|OR|XOR|NAND|NOT|\|\||\&\&)[\s+]*[\d'[+&!-@])|(?:\^')|(?:^[\w\s-']+(?<=AND|OR|XOR|NAND|NOT|\|\||\&\&)\w+\()/"; $sub1='Detected classic SQL injection probings'; $pattern=array($pat1); $subject=array($sub1); for($x=0;$x<count($pattern);$x++) { if(preg_match($pattern[$x],$value)) { //echo $subject[$x]; //echo "<br>"; $tempvar=$subject[$x]; //echo $tempvar; //header("location:n1.php?var=hello"); } else { $tempvar="No Malicious Input Detected"; } } return $tempvar; } ?> w2.php <?php //include("w1.php");//This works include("http://localhost/test2/w1.php");//This does not work //var_dump($tempvar); foreach($_REQUEST as $key => $value) { $attack=callup($value); echo $attack; } ?> <html> <body> <form action=''> <input type='text' name='txt1'> <input type='submit' name='sub1'> </form> </body> </html> <?php ?> Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 8, 2007 Author Share Posted October 8, 2007 It seems that the file is not at all being included ! :'( Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 9, 2007 Author Share Posted October 9, 2007 Any help ? Quote Link to comment Share on other sites More sharing options...
MadTechie Posted October 9, 2007 Share Posted October 9, 2007 try rebooting the linux server, so the php.ini is loaded what are the server details (spec)? php version etc Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 10, 2007 Author Share Posted October 10, 2007 This is my phpinfo() results. PHP Version 5.2.4 System Windows NT SYSTRIZON 6.0 build 6000 Build Date Aug 30 2007 07:05:48 Configure Command cscript /nologo configure.js "--enable-snapshot-build" "--with-gd=shared" Server API Apache 2.0 Handler Virtual Directory Support enabled Configuration File (php.ini) Path C:\Windows Loaded Configuration File C:\wamp\Apache2\bin\php.ini PHP API 20041225 PHP Extension 20060613 Zend Extension 220060519 Debug Build no Thread Safety enabled Zend Memory Manager enabled IPv6 Support enabled Registered PHP Streams php, file, data, http, ftp, compress.zlib Registered Stream Socket Transports tcp, udp Registered Stream Filters convert.iconv.*, string.rot13, string.toupper, string.tolower, string.strip_tags, convert.*, consumed, zlib.* This program makes use of the Zend Scripting Language Engine: Zend Engine v2.2.0, Copyright © 1998-2007 Zend Technologies -------------------------------------------------------------------------------- PHP Credits -------------------------------------------------------------------------------- Configuration PHP Core Directive Local Value Master Value allow_call_time_pass_reference On On allow_url_fopen On On allow_url_include On On always_populate_raw_post_data Off Off arg_separator.input & & arg_separator.output & & asp_tags Off Off auto_append_file no value no value auto_globals_jit On On auto_prepend_file no value no value browscap no value no value default_charset no value no value default_mimetype text/html text/html define_syslog_variables Off Off disable_classes no value no value disable_functions no value no value display_errors On On display_startup_errors Off Off doc_root no value no value docref_ext no value no value docref_root no value no value enable_dl On On error_append_string no value no value error_log c:/wamp/logs/php_error.log c:/wamp/logs/php_error.log error_prepend_string no value no value error_reporting 6135 6135 expose_php On On extension_dir c:/wamp/php/ext/ c:/wamp/php/ext/ file_uploads On On highlight.bg #FFFFFF #FFFFFF highlight.comment #FF8000 #FF8000 highlight.default #0000BB #0000BB highlight.html #000000 #000000 highlight.keyword #007700 #007700 highlight.string #DD0000 #DD0000 html_errors On On ignore_repeated_errors Off Off ignore_repeated_source Off Off ignore_user_abort Off Off implicit_flush On On include_path .;C:\php5\pear .;C:\php5\pear log_errors On On log_errors_max_len 1024 1024 magic_quotes_gpc On On magic_quotes_runtime Off Off magic_quotes_sybase Off Off mail.force_extra_parameters no value no value max_execution_time 30000000000 30000000000 max_input_nesting_level 64 64 max_input_time 60000000000 60000000000 memory_limit 800000000000M 800000000000M open_basedir no value no value output_buffering no value no value output_handler no value no value post_max_size 8M 8M precision 12 12 realpath_cache_size 16K 16K realpath_cache_ttl 120 120 register_argc_argv On On register_globals On On register_long_arrays On On report_memleaks On On report_zend_debug On On safe_mode Off Off safe_mode_exec_dir no value no value safe_mode_gid Off Off safe_mode_include_dir no value no value sendmail_from you@yourdomain you@yourdomain sendmail_path no value no value serialize_precision 100 100 short_open_tag Off Off SMTP localhost localhost smtp_port 25 25 sql.safe_mode Off Off track_errors Off Off unserialize_callback_func no value no value upload_max_filesize 2M 2M upload_tmp_dir c:/wamp/tmp c:/wamp/tmp user_dir no value no value variables_order EGPCS EGPCS xmlrpc_error_number 0 0 xmlrpc_errors Off Off y2k_compliance On On zend.ze1_compatibility_mode Off Off apache2handler Apache Version Apache/2.2.4 (Win32) PHP/5.2.4 Apache API Version 20051115 Server Administrator webmaster@localhost Hostname:Port localhost:80 Max Requests Per Child: 0 - Keep Alive: on - Max Per Connection: 100 Timeouts Connection: 300 - Keep-Alive: 5 Virtual Server No Server Root C:/wamp/Apache2 Loaded Modules core mod_win32 mpm_winnt http_core mod_so mod_actions mod_alias mod_asis mod_auth_basic mod_authn_default mod_authn_file mod_authz_default mod_authz_groupfile mod_authz_host mod_authz_user mod_autoindex mod_cern_meta mod_cgi mod_dir mod_env mod_imagemap mod_include mod_isapi mod_log_config mod_mime mod_negotiation mod_setenvif mod_userdir mod_php5 Directive Local Value Master Value engine 1 1 last_modified 0 0 xbithack 0 0 Apache Environment Variable Value HTTP_ACCEPT image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/x-shockwave-flash, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */* HTTP_REFERER http://localhost/ HTTP_ACCEPT_LANGUAGE en-in HTTP_UA_CPU x86 HTTP_ACCEPT_ENCODING gzip, deflate HTTP_USER_AGENT Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.04506) HTTP_HOST localhost HTTP_CONNECTION Keep-Alive PATH C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\ SystemRoot C:\Windows COMSPEC C:\Windows\system32\cmd.exe PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC WINDIR C:\Windows SERVER_SIGNATURE no value SERVER_SOFTWARE Apache/2.2.4 (Win32) PHP/5.2.4 SERVER_NAME localhost SERVER_ADDR 127.0.0.1 SERVER_PORT 80 REMOTE_ADDR 127.0.0.1 DOCUMENT_ROOT C:/wamp/www SERVER_ADMIN webmaster@localhost SCRIPT_FILENAME C:/wamp/www/index.php REMOTE_PORT 49259 GATEWAY_INTERFACE CGI/1.1 SERVER_PROTOCOL HTTP/1.1 REQUEST_METHOD GET QUERY_STRING phpinfo=1 REQUEST_URI /?phpinfo=1 SCRIPT_NAME /index.php HTTP Headers Information HTTP Request Headers HTTP Request GET /?phpinfo=1 HTTP/1.1 Accept image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/x-shockwave-flash, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */* Referer http://localhost/ Accept-Language en-in UA-CPU x86 Accept-Encoding gzip, deflate User-Agent Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.04506) Host localhost Connection Keep-Alive HTTP Response Headers X-Powered-By PHP/5.2.4 Keep-Alive timeout=5, max=98 Connection Keep-Alive Transfer-Encoding chunked Content-Type text/html bcmath BCMath support enabled calendar Calendar support enabled com_dotnet COM support enabled DCOM support disabled .Net support enabled Directive Local Value Master Value com.allow_dcom 0 0 com.autoregister_casesensitive 1 1 com.autoregister_typelib 0 0 com.autoregister_verbose 0 0 com.code_page no value no value com.typelib_file no value no value ctype ctype functions enabled curl cURL support enabled cURL Information libcurl/7.16.0 OpenSSL/0.9.8e zlib/1.2.3 date date/time support enabled "Olson" Timezone Database Version 2007.6 Timezone Database internal Default timezone UTC Directive Local Value Master Value date.default_latitude 31.7667 31.7667 date.default_longitude 35.2333 35.2333 date.sunrise_zenith 90.583333 90.583333 date.sunset_zenith 90.583333 90.583333 date.timezone no value no value dom DOM/XML enabled DOM/XML API Version 20031129 libxml Version 2.6.26 HTML Support enabled XPath Support enabled XPointer Support enabled Schema Support enabled RelaxNG Support enabled filter Input Validation and Filtering enabled Revision $Revision: 1.52.2.39 $ Directive Local Value Master Value filter.default unsafe_raw unsafe_raw filter.default_flags no value no value ftp FTP support enabled gd GD Support enabled GD Version bundled (2.0.34 compatible) FreeType Support enabled FreeType Linkage with freetype FreeType Version 2.1.9 T1Lib Support enabled GIF Read Support enabled GIF Create Support enabled JPG Support enabled PNG Support enabled WBMP Support enabled XBM Support enabled hash hash support enabled Hashing Engines md2 md4 md5 sha1 sha256 sha384 sha512 ripemd128 ripemd160 ripemd256 ripemd320 whirlpool tiger128,3 tiger160,3 tiger192,3 tiger128,4 tiger160,4 tiger192,4 snefru gost adler32 crc32 crc32b haval128,3 haval160,3 haval192,3 haval224,3 haval256,3 haval128,4 haval160,4 haval192,4 haval224,4 haval256,4 haval128,5 haval160,5 haval192,5 haval224,5 haval256,5 iconv iconv support enabled iconv implementation "libiconv" iconv library version 1.9 Directive Local Value Master Value iconv.input_encoding ISO-8859-1 ISO-8859-1 iconv.internal_encoding ISO-8859-1 ISO-8859-1 iconv.output_encoding ISO-8859-1 ISO-8859-1 json json support enabled json version 1.2.1 libxml libXML support active libXML Version 2.6.26 libXML streams enabled mbstring Multibyte Support enabled Multibyte string engine libmbfl Multibyte (japanese) regex support enabled Multibyte regex (oniguruma) version 4.4.4 Multibyte regex (oniguruma) backtrack check On mbstring extension makes use of "streamable kanji code filter and converter", which is distributed under the GNU Lesser General Public License version 2.1. Directive Local Value Master Value mbstring.detect_order no value no value mbstring.encoding_translation Off Off mbstring.func_overload 0 0 mbstring.http_input pass pass mbstring.http_output pass pass mbstring.internal_encoding no value no value mbstring.language neutral neutral mbstring.strict_detection Off Off mbstring.substitute_character no value no value mysql MySQL Support enabled Active Persistent Links 0 Active Links 0 Client API version 5.0.45 Directive Local Value Master Value mysql.allow_persistent On On mysql.connect_timeout 60 60 mysql.default_host no value no value mysql.default_password no value no value mysql.default_port no value no value mysql.default_socket no value no value mysql.default_user no value no value mysql.max_links Unlimited Unlimited mysql.max_persistent Unlimited Unlimited mysql.trace_mode Off Off mysqli MysqlI Support enabled Client API library version 5.0.45 Client API header version 5.0.45 MYSQLI_SOCKET /tmp/mysql.sock Directive Local Value Master Value mysqli.default_host no value no value mysqli.default_port 3306 3306 mysqli.default_pw no value no value mysqli.default_socket no value no value mysqli.default_user no value no value mysqli.max_links Unlimited Unlimited mysqli.reconnect Off Off odbc ODBC Support enabled Active Persistent Links 0 Active Links 0 ODBC library Win32 Directive Local Value Master Value odbc.allow_persistent On On odbc.check_persistent On On odbc.default_db no value no value odbc.default_pw no value no value odbc.default_user no value no value odbc.defaultbinmode return as is return as is odbc.defaultlrl return up to 4096 bytes return up to 4096 bytes odbc.max_links Unlimited Unlimited odbc.max_persistent Unlimited Unlimited pcre PCRE (Perl Compatible Regular Expressions) Support enabled PCRE Library Version 7.2 2007-06-19 Directive Local Value Master Value pcre.backtrack_limit 100000 100000 pcre.recursion_limit 100000 100000 PDO PDO support enabled PDO drivers sqlite, sqlite2 pdo_sqlite PDO Driver for SQLite 3.x enabled PECL Module version 1.0.1 $Id: pdo_sqlite.c,v 1.10.2.6.2.2 2007/03/23 14:30:00 wez Exp $ SQLite Library 3.3.17undefined Reflection Reflection enabled Version $Id: php_reflection.c,v 1.164.2.33.2.45 2007/08/20 17:01:22 sebastian Exp $ session Session Support enabled Registered save handlers files user sqlite Registered serializer handlers php php_binary wddx Directive Local Value Master Value session.auto_start Off Off session.bug_compat_42 On On session.bug_compat_warn On On session.cache_expire 180 180 session.cache_limiter nocache nocache session.cookie_domain no value no value session.cookie_httponly Off Off session.cookie_lifetime 0 0 session.cookie_path / / session.cookie_secure Off Off session.entropy_file no value no value session.entropy_length 0 0 session.gc_divisor 100 100 session.gc_maxlifetime 1440 1440 session.gc_probability 1 1 session.hash_bits_per_character 4 4 session.hash_function 0 0 session.name PHPSESSID PHPSESSID session.referer_check no value no value session.save_handler files files session.save_path c:/wamp/tmp c:/wamp/tmp session.serialize_handler php php session.use_cookies On On session.use_only_cookies Off Off session.use_trans_sid 0 0 SimpleXML Simplexml support enabled Revision $Revision: 1.151.2.22.2.35 $ Schema support enabled SPL SPL support enabled Interfaces Countable, OuterIterator, RecursiveIterator, SeekableIterator, SplObserver, SplSubject Classes AppendIterator, ArrayIterator, ArrayObject, BadFunctionCallException, BadMethodCallException, CachingIterator, DirectoryIterator, DomainException, EmptyIterator, FilterIterator, InfiniteIterator, InvalidArgumentException, IteratorIterator, LengthException, LimitIterator, LogicException, NoRewindIterator, OutOfBoundsException, OutOfRangeException, OverflowException, ParentIterator, RangeException, RecursiveArrayIterator, RecursiveCachingIterator, RecursiveDirectoryIterator, RecursiveFilterIterator, RecursiveIteratorIterator, RecursiveRegexIterator, RegexIterator, RuntimeException, SimpleXMLIterator, SplFileInfo, SplFileObject, SplObjectStorage, SplTempFileObject, UnderflowException, UnexpectedValueException SQLite SQLite support enabled PECL Module version 2.0-dev $Id: sqlite.c,v 1.166.2.13.2.9 2007/05/19 17:58:22 iliaa Exp $ SQLite Library 2.8.17 SQLite Encoding iso8859 Directive Local Value Master Value sqlite.assoc_case 0 0 standard Regex Library Bundled library enabled Dynamic Library Support enabled Internal Sendmail Support for Windows enabled Directive Local Value Master Value assert.active 1 1 assert.bail 0 0 assert.callback no value no value assert.quiet_eval 0 0 assert.warning 1 1 auto_detect_line_endings 0 0 default_socket_timeout 60 60 safe_mode_allowed_env_vars PHP_ PHP_ safe_mode_protected_env_vars LD_LIBRARY_PATH LD_LIBRARY_PATH url_rewriter.tags a=href,area=href,frame=src,input=src,form=,fieldset= a=href,area=href,frame=src,input=src,form=,fieldset= user_agent no value no value tokenizer Tokenizer Support enabled wddx WDDX Support enabled WDDX Session Serializer enabled xml XML Support active XML Namespace Support active libxml2 Version 2.6.26 xmlreader XMLReader enabled xmlwriter XMLWriter enabled zlib ZLib Support enabled Stream Wrapper support compress.zlib:// Stream Filter support zlib.inflate, zlib.deflate Compiled Version 1.2.3 Linked Version 1.2.3 Directive Local Value Master Value zlib.output_compression Off Off zlib.output_compression_level -1 -1 zlib.output_handler no value no value Additional Modules Module Name Environment Variable Value ALLUSERSPROFILE C:\ProgramData APPDATA C:\Windows\system32\config\systemprofile\AppData\Roaming CommonProgramFiles C:\Program Files\Common Files COMPUTERNAME SYSTRIZON ComSpec C:\Windows\system32\cmd.exe FP_NO_HOST_CHECK NO LOCALAPPDATA C:\Windows\system32\config\systemprofile\AppData\Local NUMBER_OF_PROCESSORS 1 OnlineServices Online Services OS Windows_NT Path C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\ PATHEXT .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC PCBRAND PRESARIO PLATFORM MCD PROCESSOR_ARCHITECTURE x86 PROCESSOR_IDENTIFIER x86 Family 15 Model 76 Stepping 2, AuthenticAMD PROCESSOR_LEVEL 15 PROCESSOR_REVISION 4c02 ProgramData C:\ProgramData ProgramFiles C:\Program Files PUBLIC C:\Users\Public RoxioCentral C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\ SystemDrive C: SystemRoot C:\Windows TEMP C:\Windows\TEMP TMP C:\Windows\TEMP tvdumpflags 8 USERDOMAIN WORKGROUP USERNAME SYSTRIZON$ USERPART E: USERPROFILE C:\Windows\system32\config\systemprofile windir C:\Windows AP_PARENT_PID 2552 PHP Variables Variable Value PHP_SELF /index.php _REQUEST["phpinfo"] 1 _GET["phpinfo"] 1 _SERVER["HTTP_ACCEPT"] image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-ms-application, application/vnd.ms-xpsdocument, application/xaml+xml, application/x-ms-xbap, application/x-shockwave-flash, application/vnd.ms-excel, application/vnd.ms-powerpoint, application/msword, */* _SERVER["HTTP_REFERER"] http://localhost/ _SERVER["HTTP_ACCEPT_LANGUAGE"] en-in _SERVER["HTTP_UA_CPU"] x86 _SERVER["HTTP_ACCEPT_ENCODING"] gzip, deflate _SERVER["HTTP_USER_AGENT"] Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 6.0; SLCC1; .NET CLR 2.0.50727; .NET CLR 3.0.04506) _SERVER["HTTP_HOST"] localhost _SERVER["HTTP_CONNECTION"] Keep-Alive _SERVER["PATH"] C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\ _SERVER["SystemRoot"] C:\Windows _SERVER["COMSPEC"] C:\Windows\system32\cmd.exe _SERVER["PATHEXT"] .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC _SERVER["WINDIR"] C:\Windows _SERVER["SERVER_SIGNATURE"] no value _SERVER["SERVER_SOFTWARE"] Apache/2.2.4 (Win32) PHP/5.2.4 _SERVER["SERVER_NAME"] localhost _SERVER["SERVER_ADDR"] 127.0.0.1 _SERVER["SERVER_PORT"] 80 _SERVER["REMOTE_ADDR"] 127.0.0.1 _SERVER["DOCUMENT_ROOT"] C:/wamp/www _SERVER["SERVER_ADMIN"] webmaster@localhost _SERVER["SCRIPT_FILENAME"] C:/wamp/www/index.php _SERVER["REMOTE_PORT"] 49259 _SERVER["GATEWAY_INTERFACE"] CGI/1.1 _SERVER["SERVER_PROTOCOL"] HTTP/1.1 _SERVER["REQUEST_METHOD"] GET _SERVER["QUERY_STRING"] phpinfo=1 _SERVER["REQUEST_URI"] /?phpinfo=1 _SERVER["SCRIPT_NAME"] /index.php _SERVER["PHP_SELF"] /index.php _SERVER["REQUEST_TIME"] 1191992619 _SERVER["argv"] Array ( [0] => phpinfo=1 ) _SERVER["argc"] 1 _ENV["ALLUSERSPROFILE"] C:\ProgramData _ENV["APPDATA"] C:\Windows\system32\config\systemprofile\AppData\Roaming _ENV["CommonProgramFiles"] C:\Program Files\Common Files _ENV["COMPUTERNAME"] SYSTRIZON _ENV["ComSpec"] C:\Windows\system32\cmd.exe _ENV["FP_NO_HOST_CHECK"] NO _ENV["LOCALAPPDATA"] C:\Windows\system32\config\systemprofile\AppData\Local _ENV["NUMBER_OF_PROCESSORS"] 1 _ENV["OnlineServices"] Online Services _ENV["OS"] Windows_NT _ENV["Path"] C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\ _ENV["PATHEXT"] .COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC _ENV["PCBRAND"] PRESARIO _ENV["PLATFORM"] MCD _ENV["PROCESSOR_ARCHITECTURE"] x86 _ENV["PROCESSOR_IDENTIFIER"] x86 Family 15 Model 76 Stepping 2, AuthenticAMD _ENV["PROCESSOR_LEVEL"] 15 _ENV["PROCESSOR_REVISION"] 4c02 _ENV["ProgramData"] C:\ProgramData _ENV["ProgramFiles"] C:\Program Files _ENV["PUBLIC"] C:\Users\Public _ENV["RoxioCentral"] C:\Program Files\Common Files\Roxio Shared\9.0\Roxio Central33\ _ENV["SystemDrive"] C: _ENV["SystemRoot"] C:\Windows _ENV["TEMP"] C:\Windows\TEMP _ENV["TMP"] C:\Windows\TEMP _ENV["tvdumpflags"] 8 _ENV["USERDOMAIN"] WORKGROUP _ENV["USERNAME"] SYSTRIZON$ _ENV["USERPART"] E: _ENV["USERPROFILE"] C:\Windows\system32\config\systemprofile _ENV["windir"] C:\Windows _ENV["AP_PARENT_PID"] 2552 PHP License This program is free software; you can redistribute it and/or modify it under the terms of the PHP License as published by the PHP Group and included in the distribution in the file: LICENSE This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. If you did not receive a copy of the PHP license, or have any questions about PHP licensing, please contact license@php.net. Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 10, 2007 Author Share Posted October 10, 2007 Could someone please check the code in your system and help me out.?? Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 12, 2007 Author Share Posted October 12, 2007 Is the code suffering from scope problems ?? Please somebody help ? Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 13, 2007 Author Share Posted October 13, 2007 I am using WAMP Server. Could somebody check the code in your webserver and tell me whether it works or not ? Quote Link to comment Share on other sites More sharing options...
MadTechie Posted October 13, 2007 Share Posted October 13, 2007 Okay. this have been here for awhile.. so i choose to look at this in more detail, (including installing WAMP) my findings when you include a URL, it fails to pass the $_GET, $_POST or $_REQUEST, in addition any functions/classes in the included file will be ignored.. now seeing as you don't really need a function, thats not a problem but you do use $_REQUEST, well their is a simple work-around, don't use include, use file_get_contents and pass the keys and values in the URL, see code below <?php #include("2.php");//This works //include("http://localhost/test/2.php");//This does not work //workaround $pass = ""; foreach($_REQUEST as $key => $value) { $pass .= "$key=$value&"; } $e = file_get_contents("http://localhost/test/2.php?$pass"); echo $e; ?> <html> <body> <form action=''> <input type='text' name='txt1'> <input type='submit' name='sub1'> </form> </body> </html> <?php ?> Quote Link to comment Share on other sites More sharing options...
d.shankar Posted October 14, 2007 Author Share Posted October 14, 2007 PHPfreaks will really be in a trouble if MadTechie wouldn't have been a member of this community. He really takes gr8 effort to sort out other people's stuff. MT should get a bonus...... Please SMods Personal Thanks to MT for the effort he took to install WAMP and check my code out. You are really generous buddy ! Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.