[VIM] Jetbox CMS file include - CVE dispute

Steven M. Christey coley at linus.mitre.org
Tue Aug 29 20:03:48 EDT 2006


On Tue, 29 Aug 2006, Steven M. Christey wrote:

>   And in fact, we have this:
>
>     else {
>     ?>
>     <?php include $relative_script_path.'/libs/htmlheader.php' ?>

Sorry, I should have been more clear.  Notice the closing "?>" after the
else.  Why the developer did this when they just open a new "<?php" tag is
unknown, but the key is the "?>"

- Steve


More information about the VIM mailing list