ANNOUNCE: Nagios Looking Glass 1.0.0#PRE is here!
Hans Wolters
j.wolters at piramide.nl
Thu Dec 28 00:16:16 CET 2006
Hi,
> Subject: [Nagios-users] ANNOUNCE: Nagios Looking Glass 1.0.0#PRE is here!
> It's been a long road the last couple of weeks, but Nagios Looking Glass
> 1.0.0#PRE is *now out* for public beta-testing.
I do not want to sound rude but could you please consider making it a bit
more sucure before you name it 1.0?
if (isset($_GET['fid']))
{
// check if we have already given a query string to $ServerFeedURL
if (strpos($ServerFeed_URL, "?") === false)
{
$ServerFeed_URL = $ServerFeed_URL . "?fid=" . $_GET['fid'];
} else {
$ServerFeed_URL = $ServerFeed_URL . "&fid=" . $_GET['fid'];
}
}
In general it is not a good idea to pass untested variables into an url.
Best regards,
Hans Wolters
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.monitoring-lists.org/archive/users/attachments/20061228/8153dfdc/attachment.html>
-------------- next part --------------
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys - and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
-------------- next part --------------
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue.
::: Messages without supporting info will risk being sent to /dev/null
More information about the Users
mailing list