kangle 安全解决 PHP 跨站权限漏洞问题

设置 php-templete.ini 文件,找到 open_basedir,把前面的分号去掉,如下所示即可解决此问题。

[code]; open_basedir, if set, limits all file operations to the defined directory
; and below. ;This directive makes most sense if used in a per-directory
; or per-virtualhost web server configuration file. This directive is
; *NOT* affected by whether Safe Mode is turned On or Off.
open_basedir = "${doc_root}:/tmp"[/code]

保存重启下 web