Code: Select all
index.php?page=item&id=9'A=0
Notice: Undefined variable: file in /var/www/domain.com/public_html/inc/pages/item.inc.php on line 2
Invalid item ID. Please check the URL.
index.php?page=item&id=9'A=0
-
thoughtless
- Posts: 19
- Joined: Fri Apr 01, 2016 11:22 am
index.php?page=item&id=9'A=0
I belive that some people try to SQL inject something in my website,
The bad news is that they can see Full Path Disclosure:
Notice: Undefined variable: file in /var/www/domain.com/public_html/inc/pages/item.inc.php on line 2
Invalid item ID. Please check the URL.
Notice: Undefined variable: file in /var/www/domain.com/public_html/inc/pages/item.inc.php on line 2
Invalid item ID. Please check the URL.
Re: index.php?page=item&id=9'A=0
You should have error reporting completely disabled when the shop is live so those error messages don't show up.
-
thoughtless
- Posts: 19
- Joined: Fri Apr 01, 2016 11:22 am
Re: index.php?page=item&id=9'A=0
Yeah, I forgot about that. Thank you.