The code got stripped out of that last comment. Let me try again:

<?php

$v = $_REQUEST['a'];
$ok = array(‘www.google.com’, ‘en.wikipedia.org/wiki/Goal’, ‘www.harvard.edu’, ‘web.mit.edu’, ‘www.google.com’, ‘www.yahoo.com’, ‘www.msn.com’);
if (!in_array(str_replace("http://", "", $v), $ok))
{
echo "Please visit only pages the author has deemed safe from within these tabs.";
exit(0);
}
?><iframe src="<?php echo ($_REQUEST['a']);?>" width="100%" height="100%" frameborder="no"></iframe>

Thanks,
–Chris

Sure, I’d be happy to give you that code. It’s pretty short and sweet; basically, it just assembles a list of allowed URLs (in $ok) and ensures that the requested URL is one of them. If not, it displays a warning; if it is an accepted URL, the page just prints out an iframe that pulls in the URL.

There are some better/cleaner ways to accomplish this, but for a quick solution that’s reasonably secure this works just fine. Note that using this loadpage.php “jump point” is only necessary if the page you want to load resides on a different domain than your own, because of security restrictions present in most browsers these days. If you’re loading a page from your own site, you can load it directly:

Good luck!
–Chris

regards