Posted by Jerry Stuckle on 09/18/07 00:58

pepper.gabriela@gmail.com wrote:
>> Anyone. For instance, I could post a form to your site which has
>> anything I want on it. That's a very common way hackers get into systems.
>
>
>
>
> But, sorry for my little experience, my forms only work if you logged
> in (and you are a registered user and a session is active...). For
> sure, I should understand how hackers do what they do...
>
>

And a hacker couldn't register and get a session active? Quite easy.

>
>
>> And that means you'll never get it in the future?
>
>
>
> absolutely not
>
>
>
>> Always validate your data.
>
>
>
> ok, thanks
>


--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex@attglobal.net
==================

• Next in forum: Re: How to get value of an private member?
• Prev in forum: Re: PHPMailer - False Positives
• Thread view: Re: no empty form fields after submitting form

[Reply to this message]