[Phplib-commit] CVS: php-lib/php/phplib-4 prepend.php4,1.2,1.3
Brought to you by:
nhruby,
richardarcher
Menu
▾
▴
[Phplib-commit] CVS: php-lib/php/phplib-4 prepend.php4,1.2,1.3
|
From: Richard A. <ric...@us...> - 2001-08-12 04:56:09
|
Update of /cvsroot/phplib/php-lib/php/phplib-4
In directory usw-pr-cvs1:/tmp/cvs-serv3611
Modified Files:
prepend.php4
Log Message:
fix the $_PHPLIB["libdir"] security hole by tracking the -stable tree
Index: prepend.php4
===================================================================
RCS file: /cvsroot/phplib/php-lib/php/phplib-4/prepend.php4,v
retrieving revision 1.2
retrieving revision 1.3
diff -C2 -d -r1.2 -r1.3
*** prepend.php4 2000/11/20 01:22:10 1.2
--- prepend.php4 2001/08/12 04:56:06 1.3
***************
*** 10,19 ****
*/
! if (!isset($_PHPLIB) or !is_array($_PHPLIB)) {
! # Aren't we nice? We are prepending this everywhere
! # we require or include something so you can fake
! # include_path when hosted at provider that sucks.
! $_PHPLIB["libdir"] = "";
! }
require($_PHPLIB["libdir"] . "db_mysql.inc"); /* Change this to match your database. */
--- 10,18 ----
*/
! $_PHPLIB = array();
!
! # Can't control your include path?
! # Point this to your PHPLIB base directory. Use trailing "/"!
! $_PHPLIB["libdir"] = "";
require($_PHPLIB["libdir"] . "db_mysql.inc"); /* Change this to match your database. */
|
