Home/ Questions/Q 8304711
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-08T17:55:12+00:00

I’m working on a little experiment here. I’ve got a test file that I

  • 0

I’m working on a little experiment here. I’ve got a test file that I use to run some code without having to actually log into my app.

At any rate, I had a thought today that I could potentially make the page self-editing and make it quicker for me to do certain menial tasks as I wouldn’t even need to open up a text editor for them.

It’s mostly working as it sits, but I’m getting a weird thing; I’m hoping either someone just happens to have experience with or can shed some light on.

I won’t post the code for the entire file, just the relevant stuff. Here’s the basic idea:

index.php:

<?php
if(isset($_POST['file'])) {
  // rewrite ourself
  $test_page = fopen('index.php', 'w');
  fwrite($test_page, $_POST['file']);
  fclose($test_page);
  header('Refresh: 0; ' . $_SERVER['PHP_SELF']);
  exit();
  die(); // we should never get this far...
}
?>
<?php <!-- All the tester stuff goes here --> ?>
<?php <!-- Nothing fancy just a bunch of function calls --> ?>
<!doctype html>
<html lang="en">
  <head>
  </head>
  <body>
    <div>
      <!-- a dump of the functions called in the tester area -->
    </div>
    <div>
      <form method='post'>
        <textarea name='file'>
<?php
$self = fopen('index.php', 'r');
while(!feof($self)) {
  echo fgets($self);
}
fclose($self);
?>
        </textarea>
        <input type="submit" value="Edit/Refresh">
      </form>
    </div>
  </body>
</html>

Now everything is working just great, except that the last 5 HTML tags are not being written to the file; or more accurate, the last 5 HTML tags are not being written into the textarea So when it comes time to save, after the submit, they obviously are not being appended. My theory so far is that once the tag is output by PHP, it obviously closes the text area… so I need to find a way to get that closing tag inside the textarea. I verified this by viewing the source of the page, so I think it’s correct.

So I think I just need a way to ‘escape’ them…

I know it’s not a good thing in terms of security, but this is just a local page that I use (it’s not available to anyone except the person sitting at my computer). So we don’t need to discuss the security issues it obviously may have…

All thoughts appreciated! 🙂

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    The easiest way to solve your problem would be to replace:

    echo fgets($self);

    with:

    echo htmlspecialchars(fgets($self));

    That way you still see the special characters in your text box but they will not be rendered as html.

    • 0