Friday, September 28, 2018

OpenTextFile in Classic ASP and how to make it "safe" for HP Fortify

This kinda suggests that second, third, and fourth variables may be handed in to restrict the scope of what this can do. The first just specifies the name of the file. The third variable is a true or false variable and handing in false will prevent new files from being created it would seem.

 
 

Addendum 10/5/2018: The better way to go may be to wrap the first variable in mappath(yournamehere) actually.

No comments:

Post a Comment