You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 'and menu.link = '' AND menu.parent_id = '38' ' at line 23
SELECT menu.id AS menu_id, menu.entry AS menu_entry, menu.link AS menu_link, menu.page_id AS menu_page_id, menu.parent_id AS menu_parent_id, menu.position AS menu_position, page.id AS page_id, page.username AS page_username, page.creation AS page_creation, page.lastModified AS page_lastModified, page.section AS page_section, page.id_newscat AS page_id_newscat, page.title AS page_title, page.description AS page_description, page.subtitle AS page_subtitle, page.body AS page_body, page.foto_filename AS page_foto_filename, page.foto_size AS page_foto_size, page.foto_type AS page_foto_type, page.position AS page_position, page.link AS page_link, page.menu AS page_menu FROM menu LEFT JOIN page ON page.id=menu.page_id WHERE page_id <> and menu.link = '' AND menu.parent_id = '38' ORDER BY menu.position
ghost
changed the title
Direct access to php script allowed. Add direct access prevention please
Direct access to php script allowed. Add direct access prevention
Aug 10, 2016
That's a beginners mistake, and a terrible bad practice. Add .htaccess file with deny access to php files, or put them outside the root web dir. http://stackoverflow.com/questions/409496/prevent-direct-access-to-a-php-include-file
If I go directly /show.php or news.php or another page around your website I can access direct script.
Examples:
.. and so on
The text was updated successfully, but these errors were encountered: