Results 1 to 3 of 3
  1. #1
    Member
    Join Date
    August 4th, 2007
    Posts
    108
    finally found a place to post this
    I forwarded my concerns on to Michele, but thought I might ask in this forum as well.

    This past week I disovered a very disturbing fact about the .php get data script when my web host decided to upgrade to php5. I guess there is a bad security hole in using the line "include($URL)" because it is calling an include from an offsite location. I can't explain it, so this simple explain page about it might help:

    http://www.devx.com/webdev/Article/26691/0/page/2

    Well, php5 closes this hole, but in doing so it completely shut down all my listings with GoldenCan. My web host backed off the upgrade and it was fine again, but I still had to figure out how to get around the "include" because it is a security flaw.

    I use OScommerce as just an organizing sitebuilder, but this .php flaw is in code and not per version of ecommerce solution. I sent an example using .php 'curl' to Michele and they are looking at it...........

    So far, it appears curl does the trick on GoldenCan's script....at least mine is still working now after the web host upgrade.............

  2. #2
    notary sojac Herb ԿԬ's Avatar
    Join Date
    January 18th, 2005
    Location
    Central/Western NY State
    Posts
    7,741
    Cool
    I use curl. Seems to work.

  3. #3

  4. Newsletter Signup

+ Reply to Thread

Similar Threads

  1. Looks Like I found the Right Place
    By fabeddie in forum Introduce Yourself
    Replies: 5
    Last Post: December 18th, 2007, 11:30 AM
  2. Have I found the right place?...
    By KeithAWatson in forum Introduce Yourself
    Replies: 7
    Last Post: December 4th, 2006, 12:45 PM
  3. Hi all! I'm glad I found this place!
    By RobGraves in forum Introduce Yourself
    Replies: 2
    Last Post: February 4th, 2005, 04:08 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •