[prev in list] [next in list] [prev in thread] [next in thread]
List: php-doc-cvs
Subject: [DOC-CVS] =?utf-8?q?svn:_/phpdoc/en/trunk/reference/mongo/_security.xml?=
From: Kristina_Chodorow <kristina () php ! net>
Date: 2010-07-30 14:41:28
Message-ID: svn-kristina-1280500888-301720-463238504 () svn ! php ! net
[Download RAW message or body]
kristina Fri, 30 Jul 2010 14:41:28 +0000
Revision: http://svn.php.net/viewvc?view=revision&revision=301720
Log:
change $in to $ne
Changed paths:
UU phpdoc/en/trunk/reference/mongo/security.xml
Modified: phpdoc/en/trunk/reference/mongo/security.xml
===================================================================
--- phpdoc/en/trunk/reference/mongo/security.xml 2010-07-30 14:35:58 UTC (rev 301719)
+++ phpdoc/en/trunk/reference/mongo/security.xml 2010-07-30 14:41:28 UTC (rev 301720)
@@ -21,7 +21,7 @@
<para>
Someone could subvert this by getting
- <emphasis>http://www.example.com?password[$in]=foo</emphasis>, which PHP
+ <emphasis>http://www.example.com?password[$ne]=foo</emphasis>, which PHP
will magically turn into an associative array, turning your query into
<literal>$collection->find(array("username" => array('$ne' => "foo")))</literal>,
which will return all users not named "foo" (all of your users, probably).
Property changes on: phpdoc/en/trunk/reference/mongo/security.xml
___________________________________________________________________
Added: svn:eol-style
+ native
--
PHP Documentation Commits Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic