Installation, updates, manuals and APIs.
Code, issues, development roadmap.
Custom job offers.
Send us your sales or general questions.
such injections will impossible
xxx.php?sIncPath=unwanted_code_path
2. since 6.1.4 we always re-setup all variables before using, so in even don`t will get incoming params
3. we don`t use global $dir more in not-safe places