Re: QUERY_STRING clarification — All PHP — IT news, forums, messages

You are here: Re: QUERY_STRING clarification « All PHP « IT news, forums, messages

Posted by PhilM on 08/14/05 15:34

"ZeldorBlat" <zeldorblat@gmail.com> wrote in message
news:1123992688.505008.109940@g43g2000cwa.googlegroups.com...
> It's perfectly safe. Register globals isn't dangerous in and of itself
> -- it's the misuse of it that is unsafe. In this case, you've
> guaranteed that the variable called $QUERY_STRING is in fact the same
> as $_SERVER['QUERY_STRING'] so you're ok.
>
> With register globals on, the danger is that someone could potentially
> set the value of $QUERY_STRING through a GET, POST, or cookie variable
> and you would never know the difference.
>

Thx for that...
I thought that may be the case, but wasn't real certain.
Angst now somewhat nullified :)

Navigation:

Next in forum: Alternative ways to send email via php?
Prev in forum: Re: Get filenames in to a javascript
Thread view: Re: QUERY_STRING clarification

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация