How hard would it be to use javascript in a PM
Moderator: General Moderators
-
davidprogramer
- Forum Commoner
- Posts: 64
- Joined: Mon Nov 28, 2005 6:11 pm
How hard would it be to use javascript in a PM
Well. I am having a little trouble here because users can easily change the variables sent in a PM (the globals in a link which puts them in a clan or sends a reject). SO I was wondering. With javascript it would make it harder. How hard (or is it even possible) to put javascript links in a PM?
- Chris Corbyn
- Breakbeat Nuttzer
- Posts: 13098
- Joined: Wed Mar 24, 2004 7:57 am
- Location: Melbourne, Australia
-
davidprogramer
- Forum Commoner
- Posts: 64
- Joined: Mon Nov 28, 2005 6:11 pm
-
davidprogramer
- Forum Commoner
- Posts: 64
- Joined: Mon Nov 28, 2005 6:11 pm
JS can be used heavily in a client/server model (AJAX) but that's advanced stuff compared to a simple PHP processing class/function.
And no. You do not "have to" trust user input. NEVER TRUST IT
Sure, your users might not be out to do something bad, but I bet any money if a hacker did a security scan on your site looking for faults in the system and discovered you had a leak in your security, they would abuse that to no end.
Never trust user input.
And no. You do not "have to" trust user input. NEVER TRUST IT
Sure, your users might not be out to do something bad, but I bet any money if a hacker did a security scan on your site looking for faults in the system and discovered you had a leak in your security, they would abuse that to no end.
Never trust user input.