Yes, very true. When dealing with externally provided data in your
script, always assume first that data is tainted, and make sure it
isn't before you try to do anything with it. Follow Richard & Greg's
advice on checking your data. You could also use some kind of
priveleged authentication thing
Pablo D Marotta wrote:
> Hi there..
> I need to pass variables to a page through an html link.
> I do it like this:
>
> Export
>
> where 'buildQuery' is the variable I´m passing.
>
> In the destination page, I capture it with $_GET and that´s it.
>
> I want to know if there is any way of doing it w
On Mon, 2005-01-03 at 10:54 -0300, Pablo D Marotta wrote:
> Hi there..
> I need to pass variables to a page through an html link.
> I do it like this:
>
> Export
>
> where 'buildQuery' is the variable IÂm passing.
>
> In the destination page, I capture it with $_GET and thatÂs it.
>
> I want to
Pablo D Marotta wrote:
Hi there..
I need to pass variables to a page through an html link.
I do it like this:
Export
where 'buildQuery' is the variable I´m passing.
In the destination page, I capture it with $_GET and that´s it.
I want to know if there is any way of doing it without showing the var
4 matches
Mail list logo
