Article Topic Learning Download Q&A Programming Dictionary Game Recent Updates

简体中文(ZH-CN) English(EN) 繁体中文(ZH-TW) 日本語(JA) 한국어(KO) Melayu(MS) Français(FR) Deutsch(DE)

Home > Backend Development > PHP Tutorial > body text

discuz这段代码如何理解

WBOY

Release： 2016-06-23 13:44:21

Original

895 people have browsed it

这段代码的作用是为了啥
if (isset($_REQUEST['GLOBALS']) OR isset($_FILES['GLOBALS'])) {
exit('Request tainting attempted.');
}

回复讨论(解决方案)

Request tainting attempted 试图请求改变

即传入的参数不能用 GLOBALS 做变量名

Request tainting attempted 试图请求改变

即传入的参数不能用 GLOBALS 做变量名

为啥不让GLOBALS做变量名呢，难道作了会怎么样吗？

那你就要看他的代码了
由于 $GLOBALS 是超全局变量，如果被 extract 覆盖了，就全完了

那你就要看他的代码了
由于 $GLOBALS 是超全局变量，如果被 extract 覆盖了，就全完了

还是木理解，能举一个小粟子吗

$x = 123;$a = array('x' => 'abc');extract($a);echo $x;

Copy after login

abc
$a 被改变了

Related labels：

discuz这段代码如何理解

source：php.cn

Previous article：php做验证码输出图片显示的是乱码，怎么破？ Next article：mysql触发器的问题能否使用触发器控制某字段一旦有值则拒绝更新

Statement of this Website

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Latest Articles by Author

BlackRock Labels BTC a Unique Diversifier

2024-09-20 15:51:33
Internet Computer (ICP) Price Prediction: Will ICP Price Hit $24?

2024-09-20 15:47:32
Worldcoin (WLD) Price Prediction 2022-23

2024-09-20 15:45:32
Top Meme Coins to Invest In Today

2024-09-20 15:39:32
Floki (FLOKI) Price Prediction: Will the Revamped Marketing Help Floki Catch Up on October Gains?

2024-09-20 15:38:32
Next Cryptocurrency to Explode: 5 Coins to Add to Your Watchlist

2024-09-20 15:27:32
Dogecoin: From an Internet Meme to a Digital Currency with a Billion-Dollar Market Capitalization

2024-09-20 15:26:32
ZChains Unveils a Series of Exciting Updates and Launches to Enhance Its Ecosystem

2024-09-20 15:12:32
How to download the Apple version of Little Fox Payment Platform

2024-09-20 14:53:01
How beginners trade on MetaMask and its advantages and disadvantages

2024-09-20 14:51:01

Latest Issues

Stream data from OpenAI's API using AJAX, PHP, and server-sent events How can I use Server Sent Events (SSE) to stream data from the above API to a browser clie...

From 2023-11-11 12:03:23

0

1

497

How to solve /opt/lampp/bin/mysql.server: line 261: log_success_msg: command not found After installing xampp in my linuxmanjaro, I encountered this error. Previously, even with...

From 2023-11-08 08:46:06

0

1

263

Updating existing codebase to PHP 8.1: Handling non-nullable internal function parameters with Null values I've just started upgrading my code to be compatible with php8.1. I have a lot of code sni...

From 2023-10-31 20:01:48

0

2

222

Customize address fields on WooCommerce My Account and Checkout I am using woocommerce_checkout_fields filter to edit the value of woocommerce field label...

From 2023-10-29 19:34:04

0

1

319

Learn about CSRF I don't see how using a "challenge token" adds any kind of prevention: what valu...

From 2023-10-23 13:57:29

0

2

218

Related Topics

More>

Popular Recommendations

Popular Tutorials

More>

Related Tutorials

Popular Recommendations

Latest courses

Latest Downloads

More>

Web Effects

Website Source Code

Website Materials

Front End Template

About us Disclaimer Sitemap: php.cn：Public welfare online PHP training，Help PHP learners grow quickly！