30 Sep, 2022
Welcome! Guest
[ Login ]
Home | Customer Centre | Support Centre
RSS | Set Homepage | Favorite

PHP - How to define magic_quotes_gpc

Date Created: 11 Jan, 2009   (13 year(s) ago) Viewed: 1556 Rating: 


You can Enable / Disable magic_quotes_gpc for php in your account by setting this directive in .htaccess in httpdocs folder:

php_flag magic_quotes_gpc On


php_flag magic_quotes_gpc Off

The magic_quotes_gpc is a function which automatically escape $_GET, $_POST and $_COOKIE variables. This cause a lot of (poorly written) PHP scripts out there which blindly rely on magic_quotes_gpc, to be wide open to various SQL/XSS-injections.

If you run a website that relies on magic_quotes_gpc for escaping user input, we strongly recommend that you disable access to such scripts until a version fixing this bug is released.

By default magic_quotes_gpc was turned off.
Related Links
*** The above information is for reference only, Please seek independent technical advice if found necessary.
Was this article helpful?
You can bookmark it with your tracker:DiggredditDeliciousGoogle BookmarksWindows LiveFacebookSlashdot BookmarksPropellerTechnoratiBlinkListYahoo bookmarksMa.gnoliaSquidoo
ec2Biz.com Interactive Multimedia Ecommerce Web Hosting Online Shop Domain name Solutions
©2022 Focus Network Company. All Rights Reserved.