Correction in the code on page 130

In the listing for the function unvulnerable_show_me_the_data(), the first line of the function seems to have a typo:

drupal_set_title(t('Searching for %suser-name', array('%user-name' => $user_search)));

The bolded placeholder in the text above passed to the translate function should probably be %user-name instead of %suser-name.


Also in the same code

Also in the same code listing, the delimiting quotes on many of the strings are incorrectly represented by double tick/apostrophe marks.