23 Jul, 2018
Welcome! Guest
[ Login ]
Home | Customer Centre | Support Centre
RSS | Set Homepage | Favorite
Search:
Browse:

PHP - How to define magic_quotes_gpc

Date Created: 11 Jan, 2009   (9 year(s) ago) Viewed: 1305 Rating: 

Overview

You can Enable / Disable magic_quotes_gpc for php in your account by setting this directive in .htaccess in httpdocs folder:

php_flag magic_quotes_gpc On

or

php_flag magic_quotes_gpc Off

The magic_quotes_gpc is a function which automatically escape $_GET, $_POST and $_COOKIE variables. This cause a lot of (poorly written) PHP scripts out there which blindly rely on magic_quotes_gpc, to be wide open to various SQL/XSS-injections.

If you run a website that relies on magic_quotes_gpc for escaping user input, we strongly recommend that you disable access to such scripts until a version fixing this bug is released.

By default magic_quotes_gpc was turned off.
Related Links
*** The above information is for reference only, Please seek independent technical advice if found necessary.
Was this article helpful?
You can bookmark it with your tracker:DiggredditDeliciousGoogle BookmarksWindows LiveFacebookSlashdot BookmarksPropellerTechnoratiBlinkListYahoo bookmarksMa.gnoliaSquidoo
Permalink:  
 
ec2Biz.com Interactive Multimedia Ecommerce Web Hosting Online Shop Domain name Solutions
©2018 Focus Network Company. All Rights Reserved.