Yet Another PHP Security Hole
A new security problem has been discovered in PHP 4.2.x. This is not the first major hole in PHP, and it probably won't be the last.
Even if your PHP runtime is secure, it's really hard to write secure PHP scripts. There's so many things that can go wrong--malicious users setting "internal" global variables, SQL injection attacks, ".inc" files containing passwords, and a whole host of other all-to-common bugs.
Just say no.
Want to contact me about this article? Or if you're looking for something else to read, here's a list of popular posts.