Mailinglist Archive: opensuse (3566 mails)
| < Previous | Next > |
Re: [opensuse] PHP Question
- From: "Cristian Rodriguez R." <judas_iscariote@xxxxxxxxxxxxx>
- Date: Fri, 27 Apr 2007 17:26:31 -0400
- Message-id: <46326A87.9080508@xxxxxxxxxxxxx>
John D Lamb escribió:
>
> <form method="post" action="<?php echo $SEVER['PHP_SELF']; ?>">
>
Sure,and then you get a free security hole.
it should say.
<form method="post" action="<?php echo $_SERVER['SCRIPT_NAME']; ?>">
or in case you **really** want to use PHP_SELF
<form method="post" action="<?php echo
htmlspecialchars($_SERVER['PHP_SELF']); ?>">
>
> <form method="post" action="<?php echo $SEVER['PHP_SELF']; ?>">
>
Sure,and then you get a free security hole.
it should say.
<form method="post" action="<?php echo $_SERVER['SCRIPT_NAME']; ?>">
or in case you **really** want to use PHP_SELF
<form method="post" action="<?php echo
htmlspecialchars($_SERVER['PHP_SELF']); ?>">
| < Previous | Next > |