Not sure where bug reports should go, so I'm posting mine in feedback.
This morning when I logged in to DaniWeb, instead of getting the redirect page, I somehow obtained a 'login.php' file for the page instead.
Opening the file in emacs, it contained (in this order):
- A bunch of (apparently) binary junk data
- Some http session information
- PHP source code for the redirect page
I don't know what happened, but I logged out and back in again without any problems.
I'm no expert in PHP or web services, but I'm under the impression that servers aren't supposed to distribute their source code under normal circumstances. Does anyone on the DW team want me to send it to them so they can analyze it?