Errata for Essential PHP Security
Submit your own errata for this product.
The errata list is a list of errors and their corrections that were found after the product was released. If the error was corrected in a later version or reprint the date of the correction will be displayed in the column titled "Date Corrected".
The following errata were submitted by our customers and approved as valid errors by the author or editor.
Color Key: Serious Technical Mistake Minor Technical Mistake Language or formatting error Typo Question Note Update
| Version |
Location |
Description |
Submitted By |
Date Submitted |
Date Corrected |
| Printed |
Page x
first paragraph |
attracks
NOW READS:
attacks
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page xi
|
http://elists.oreilly.com
NOW READS:
http://elists.oreilly.com/
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 6
|
search = $_GET['search'];
NOW READS:
$search = $_GET['search'];
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 10
first code block |
while (strpos($_POST['filename'], '..') !== FALSE)
NOW READS:
while (strpos($filename, '..') !== FALSE)
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 12
printf |
The entry for printf HAS BEEN REMOVED from the bulleted
list, because a search for print includes these cases.
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 26
|
http://www.google.com
NOW READS:
http://www.google.com/
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 30
|
Red from the list and clicks Select
The words "Red" and "Select" NOW APPEAR in a fixed-width font.
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 36
in the note |
discoveries have revealed both weaknesses
NOW READS:
discoveries have revealed weaknesses
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 39
in the note |
INTO user(last_name)
NOW READS:
INTO users(last_name)
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 42
Figure 4-2 |
In Figure 4-2, the "No" path from "PHPSESSID in query string?" is not labeled.
|
Anonymous |
|
|
| Printed |
Page 55
|
basename($_GET['filename'] ==
NOW READS:
basename($_GET['filename']) ==
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 55
|
/* $filename is within /path/to */.
NOW READS:
/* $filename is within /path/to. */
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 56
|
and the filename is treated as
NOW READS:
and the original filename is treated as
|
Anonymous |
|
Feb 01, 2006 |
| Printed |
Page 83
|
ENT_QUOTES, 'UTF-8'));
NOW READS:
ENT_QUOTES, 'UTF-8');
|
Anonymous |
|
Feb 01, 2006 |
|
| |
