Re: Let parse_str() parse more than max_input_vars args

From: Date: Wed, 14 Mar 2012 21:46:38 +0000
Subject: Re: Let parse_str() parse more than max_input_vars args
References: 1 2 3  Groups: php.internals 
Request: Send a blank email to [email protected] to get a copy of this message 
> But Pierre, you understand that by the time you ini_set() it in the code
> it can only ever affect parse_str() calls.

Well, wouldn't INI_ALL would allow .htaccess files to override that
statement, and hence open the vulnerability?

Anthony

Thread (20 messages)

« previous php.internals (#58939) next »