PTV website is built on Laravel – Wait, What?

June 11, 2017 By - Usama Muneer | 992

    Introduction? No Disappointment

    As you all may know, Team TWT is a huge fan of Laravel. Our Team always look forward to contributes and explores more & more about the framework.

    Recently, we were busy gathering a database of Pakistani websites running on Laravel. Soon, we came across Pakistan’s very own PTV’s website, which we found is built on Laravel. At first we were really happy to see that some big names are using Laravel to build their websites using Laravel. But what we just discovered next was really sad yet disappointing.

    PTV website is made on Laravel. What? Why?

    Let us go through some of the priceless pictures from the PTV’s official website where almost every sensitive or yet forbidden (to be more specific) file is exposed on the internet. Which is indeed very sad for me as a developer.

    Well, have a look at it.

    Runs on Laravel 5.1

    We not only know that.

    composer-json-file

    Isn’t that the composer.json file? Oh yes, it is.

    They use smallCamelCase for Class names

    app-dir

    “whyPTV” why?

    Aren’t view files meant to be sacred?

    view

    I guess they aren’t on PTV website.

    Artisan File too?

    artisan

    Oh wait, is that really their Home URL?

    homeurl

    And I always thought there’s some Rocket science called ‘URL Rewrites’

    A message to Developers

    developers

    A message to PTV

    Well, If you want a more professional yet better website, which you could be proud of, you can always leave us a message here. Team TWT really likes to help.

    Conclusion

    In the end, I only want to say that don’t misinterpret us. This isn’t about to hurt anyone’s sentiments. This isn’t a personal attack as well. We only want justice to be prevailed for this lovely framework. None of us were able to digest how these noobs just played unfair with Laravel.

    This article is only for the awareness for some developers out there not to repeat these mistakes again. I hope they will learn from these mistakes.

    Hence we hope this isn’t taken the wrong way. Our mere concern was to pin point the fact that the security of ptv’s website shouldn’t be so lightly handled

    If you liked this article, do leave us a comment below. You can also follow us on Twitter.

    blog user
    Usama Muneer

    A web enthusiastic, self-motivated & detail-oriented professional Full-Stack Web Developer from Karachi, Pakistan with experience in developing applications using JavaScript, WordPress & Laravel specifically. Loves to write on different web technologies with an equally useful skill to make some sense out of it.

    Related Posts

    If you're on MacOSX & use Laravel valet for managing your development environment. Then this issue might arouse when you try to upgrade your PHP version or even Laravel Valet. But there's an easy fix for that.

    Maintaining Database Relationships in Laravel is quite a task but when it comes to nested relationships, things get a bit tangled up to handle.

    When it comes to validation in Laravel. Developers often refer to using separate Requests to achieve it. Now for creating and updating, rules might get a little bit tricky. But we've got you covered.

    While Developing applications in Laravel, there comes situations where you have date in simple string format. For instance getting raw response from an API. But you want to convert that string into Carbon instance and use the Carbon helpers on it. Well there's a simple solution to it.