Thank you superdezign :D I didn't write this, but I always use it. The .htaccess way is perfectly valid as well. I just prefer not to clog up mine, that's all. Yours is probably already clean. Yes its clean sicnce i havent touch it yet !!!! Thank you once again 8) feyd wrote.. Looking for the submit...
Thank you superdezign....once again!!!
Can you please be more specific ???
A sample code maybe ???
I dont want to give me the exact answer BUT at least give me a way to discover what you mean...
I know,you explain this several times ..but i dont get it....sorry
thank you oce again superdezign !!!!!!! Reading in http://www.php.net/manual/en/security.magicquotes.php#55935 to turn of magic quotes put the following line into the .htaccess file: php_flag magic_quotes_gpc off So i think that is what you wanted to say ... Can be rewritten as this: if(empty($_POS...
superdezign ..thank you for the answer.... Your method of creating an "allowed categories" array is intuitive what you mean..my dictionary is not giving me the right meaning of the word intuitive :) aside from you not checking if $_POST['categoryboth'] exists before using it You mean some...
Hello. its the first time i m trying to secure what user ender in form field..so please be gentle with me :oops: Lets say that i got a simple form... $test='<form action="" method="post" name="upl_form"> <select name="categoryboth"> <option value="">...
It's good practise to "build" all URLs in your application with a function you create, such as create_url($path). For example rather than hard-coding: Can you pls give me a HINT how this function must be ??? OR some links(tutorials) to read more about ?? Thnx Once again.....
Hello. I m trying to understand what is the best way to build my links.. Any Help ??? So far i m building my links this way... For my HomePage... http://localhost/index.php?p=homebody For the categories... http://localhost/index.php?p=display&cid=1 and for the items.... http://localhost/index.ph...
Thnx both. Of Caurse ALL User Input MUST VALIDATED... But i asked this cause i plan , each time that this kind of EXTRA PROTECTION fail , To.. 1st)Log-OUT the USER(since in my case ONLY registered Users Can POST Infos) 2nd) Temp-Bann the IP 3rd)E-mail security ADMIN that something goes wrong.. 4th) ...
Hello. I always wanted to ask this .... HOW CAN BE SURE that the values submited from the proper FORM/PAGE ??? What i mean: Lets say that i want to use a form that submits infos to the same page... <form name="form1" method="post" action="same_page.php"> <input type=&qu...