[Site Home] [Forum Home] [Articles] [File DB] [News Archives]
IceTeks Articles -> Creating your own content management system
(View original topic)
| Andy - Oct-27-2004 server time |
LOL I was about to say. WOW this guest is smart. Why can't i find someone like that at my site.  |
| Guest - Oct-27-2004 server time |
| mysql injection is mostly for when the user enters something that is put in a query, for example: mysql_query("SELECT * FROM db where name='".$_POST[name]."'"); But normally there would be more security checks and escaping to avoid stuff like slashes etc.. Oops this was Red, was at college and forgot to log in. |
| anonymous - Oct-26-2004 server time |
| You've got a potential sql injection hole on line 6 of the script on page 4. You should escape $_POST[user] with addslashes() |
| q2_stefan - Oct-26-2004 server time | ||
should be '6: Finally, we end with the footer, closing off the html output.' |
| Red Squirrel - Oct-24-2004 server time |
| If you want to know how to create a content management system with php where you can make password protected pages that require to be registered, then this article should help you, but going through the code of a very basic CMS system and providing you the code to play around with. http://www.iceteks.com/articles/db.php/act...icle/phpcms/p/1 |
(Showing 50 last posts, newest on top)