Potential problem - Sessions and FireFox Tabs

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

Post Reply
User avatar
CoderGoblin
DevNet Resident
Posts: 1425
Joined: Tue Mar 16, 2004 10:03 am
Location: Aachen, Germany

Potential problem - Sessions and FireFox Tabs

Post by CoderGoblin »

When using $_SESSION to "store parameters", rather than $_GET be aware that people may open the same "window" in different tabs (Firefox... IE7?). When the $_SESSION variable stores an "id", changes to an earlier tab may be incorrectly stored (uses the latest id).

Just thought I'd mention this as I have come across a couple of sites where they do not take it into account.
User avatar
John Cartwright
Site Admin
Posts: 11470
Joined: Tue Dec 23, 2003 2:10 am
Location: Toronto
Contact:

Post by John Cartwright »

Moved to Security.
Post Reply