Re: Auditing Code (security wise)

Posted by marcan on 1197636490
Absolutely agree.

Can someone proceed to a search on all the ICMS base code to look for these :

Quote:

foreach ( $_POST as $k => $v ) {
${$k} = $v;
}


or
Quote:

foreach ( $_GET as $k => $v ) {
${$k} = $v;
}


and submit a bug request about this ?

ANything else we should be lookig for ?

This Post was from: https://www.impresscms.org/iforum/viewtopic.php?topic_id=618&post_id=6229