Receiving information securely from forms

Discussions of secure PHP coding. Security in software is important, so don't be afraid to ask. And when answering: be anal. Nitpick. No security vulnerability is too small.

Moderator: General Moderators

mikesmith76
Forum Commoner
Posts: 34
Joined: Fri Aug 25, 2006 7:10 am
Location: Manchester, UK

Post by mikesmith76 »

I'm not a user of add slashes either, but have never heard any mention of the security hole. Would you mind explaining this in more detail?

Thanks for taking the time to answer.
User avatar
feyd
Neighborhood Spidermoddy
Posts: 31559
Joined: Mon Mar 29, 2004 3:24 pm
Location: Bothell, Washington, USA

Post by feyd »

Look in the Useful Posts thread (in PHP - Code). A thread referenced was written by Chris Shiflett demonstrating the avoidance of addslashes() allowing an injection.
mikesmith76
Forum Commoner
Posts: 34
Joined: Fri Aug 25, 2006 7:10 am
Location: Manchester, UK

Post by mikesmith76 »

Thanks will do :-)
Post Reply