> There are various methods for securing file_exists() ... If you want to secure ... so that's unsecure , is'nt it ?
>I don't think that is critical problem. If it's not a problem Why you show us a methode to secure ? I think many programmers don't know this problem exists ! But there is too much hypocresy in php community to admit this vulnerability. The article : http://www.zend.com/zend/art/art-oertli.php don't talk about this sorry... Nourredine Himeur www.security-challenge.com _______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.netsys.com/full-disclosure-charter.html
