|
Posted by Jerry Stuckle on 02/06/06 03:49
Geoff Berrow wrote:
> Message-ID: <F-qdnc_NlcIkrHveRVn-iA@comcast.com> from Jerry Stuckle
> contained the following:
>
>
>>You need to be VERY careful on this one. You aren't validating the data.
>>
>>For instance - what happens if I type in the browser:
>>
>> http://www.example.com/delete.php?id=5+OR+1%3d1
>>
>>Your query ends up as "delete from people where id=5 or 1=1";
>>
>>Google for 'sql injection".
>
>
> Also, I would avoid having links that delete files altogether. If a
> search engine ever makes it to that page all your data will be deleted.
>
> I usually make the table a form and use checkboxes
> echo "<input type ='checkbox' name='del[]'value=$id>";
>
> Name all the boxes 'del[]' When posted the items to be deleted will be
> in an array and you can loop through it and delete them.
>
Geoff,
And what happens if I come along and post a form back to your page with:
<input type ='checkbox' name='del[]' value="1 OR 42=42">
ALWAYS validate incoming data - even if it's from a checkbox!
--
==================
Remove the "x" from my email address
Jerry Stuckle
JDS Computer Training Corp.
jstucklex@attglobal.net
==================
Navigation:
[Reply to this message]
|