Preventing variable injection in your PHP script

Discussion in 'other security issues & news' started by Tech Manager, Apr 8, 2008.

Thread Status:
Not open for further replies.
  1. Tech Manager

    Tech Manager Registered Member

    Joined:
    Jan 7, 2008
    Posts:
    61
    One of the first rules you should follow when creating a website that accepts user input is this: Never trust user input. In case you didn’t get it the first time, all user input is potentially evil.

    Complete article is located here.

    This article introduces PHP newbies to concepts related to variable limiting with the extract() function and EXTR_IF_EXISTS flag.
     
Loading...
Thread Status:
Not open for further replies.