php 4.3.4 and register_globals = Off
Posted: Thu Feb 12, 2004 7:30 pm
I'm switching from 4.1.2 (the version that I began from) to 4.3.4
Some of my old scrips does not run, mainly the ones that where sending data to himselfs via
* Is it "normal" or I have a bad install?
I have set the in php.ini and those scripts are running again.
But I know that there is a kind of security hole.
* What is the correct way for sending -and receiving- form data under 4.3.4, having register_globals = On?
* Is it possible to send LARGE number of variables -or a whole array- through the form-post-action method?
I will thank very much for the simplest examples, or a link to more complex or commented forms.
Some of my old scrips does not run, mainly the ones that where sending data to himselfs via
Code: Select all
<form name="filtres" method="post" action="index.php?search=1&word=<? echo $word ?>">I have set the
Code: Select all
register_globals = OffBut I know that there is a kind of security hole.
* What is the correct way for sending -and receiving- form data under 4.3.4, having register_globals = On?
* Is it possible to send LARGE number of variables -or a whole array- through the form-post-action method?
I will thank very much for the simplest examples, or a link to more complex or commented forms.