doulei6330 2017-08-16 20:54
浏览 31
已采纳

php如果包含_get else则显示错误

I am somewhat a newby at PHP ... so what im trying to do is to get the the page using the following code

<?php include $_GET['topic']; ?>

to get the url like this http://ulixtxteditor.org/entities/helpCentre?topic=credits that much works great for me however if no page is found i would like to use the else statement to display an error instead of a blank page. What should I do? ex: http://ulixtxteditor.org/entities/helpCentre?topic= so this part would display an error?

<?php if(isset){include $_GET['topic'];} else {echo "error"} ?>

I tried this but it wont work.

  • 写回答

3条回答 默认 最新

  • dqrsceg6279196 2017-08-16 21:14
    关注

    Use something like this:

    <?php
// In case topic parameter wasn't provided you will have fallback.
$topic = isset($_GET['topic']) ? $_GET['topic'] : '';
// Now you can check topic and have valid file name.
switch ($topic) {
    case 'credits':
        $fileName = 'credits.php';
        break;
    default:
        $fileName = 'index.php';
        break;
}
// Now it is possible safely include file.
include __DIR__ . DIRECTORY_SEPARATOR . $fileName;

    Using $_GET['topic'] directly in include or require construction is unsafe because you vulnerable to "Directory traversal attack". Moreover you always must validate input parameters with purpose avoid include in php script css files etc...

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(2条)

报告相同问题?

悬赏问题

  • ¥15 微信会员卡等级和折扣规则
  • ¥15 微信公众平台自制会员卡可以通过收款码收款码收款进行自动积分吗
  • ¥15 随身WiFi网络灯亮但是没有网络,如何解决?
  • ¥15 gdf格式的脑电数据如何处理matlab
  • ¥20 重新写的代码替换了之后运行hbuliderx就这样了
  • ¥100 监控抖音用户作品更新可以微信公众号提醒
  • ¥15 UE5 如何可以不渲染HDRIBackdrop背景
  • ¥70 2048小游戏毕设项目
  • ¥20 mysql架构,按照姓名分表
  • ¥15 MATLAB实现区间[a,b]上的Gauss-Legendre积分