Please check this PHP code for any vul. espically for XXS

please check it for VUL for XXS .

i had written the following code by muself

<?PHP
// Random code is for saving the report.... in a html file with random names..... so that if won't conflict with the old report.
$codelenght = 10;
while($newcode_length < $codelenght) {
$x=1;
$y=3;
$part = rand($x,$y);
if($part==1){$a=48;$b=57;}
if($part==2){$a=65;$b=90;}
if($part==3){$a=97;$b=122;}
$code_part=chr(rand($a,$b));
$newcode_length = $newcode_length + 1;
$newcode = $newcode.$code_part;
}
//Random code ends .. the new generated random code is given by $newcode......
$ref=@$HTTP_REFERER;
$link = $_POST["link"];
$reason = $_POST["reason"];
$savefile = "reports/$newcode.html";
$open = fopen($savefile, 'w') or die("Error Please try after some time");
fwrite($open, "<head><title>Dead Link Report Details : www.site.com </title></head><body>");
fwrite($open, "<strong>URL :</strong> ");
fwrite($open, $link);
fwrite($open, "<br /><strong>Reason :</strong> </body>");
fwrite($open, $reason);
fclose($open);
echo "Your report has been submitted <br /> Good work <br /><br />To see your report you can visit the following URL <br /><strong>www.site .c om /reports/$newcode.html</strong> ";
?>
Click to expand...

and here is the html form

<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Report Dead Links</title>
</head>

<body>
<tt> <h2> <strong>Report Dead Link</strong></h3> </tt>
<form action="report.php" method="post">
Article URL :
<input name="link" type="text" size="60" maxlength="500"><br />
<tt>eg : http://www.site.com/234-sometext-someword.html</tt>
<br /><br />
<strong>Select Reason</strong> <br />
<input name="reason" type="radio" value="Link Dead" checked /> Link Dead <br />
<input name="reason" type="radio" value="Invalid URL"/> Invalid URL <br />
<input name="reason" type="radio" value="other"/> Other <br />
<input name="Sumbit Report" type="submit" /></form>
</body>
</html>
Click to expand...

please check it for VUL for XXS .

thanks friends
love u all
god bless

Log in or Sign up

Please check this PHP code for any vul. espically for XXS

Prateekgupta Member

Eager2Seo Member

Log in or Sign up

Please check this PHP code for any vul. espically for XXS

Prateekgupta Member

Eager2Seo Member

Useful Searches