I am using a jquery plugin stepy which turns my long form into a
wizard.
My whole form is written to comply with the form helper
example
<?php echo $form-
>create('relate',array('id'=>'default','name'=>'submit'));?>
<?= $form->input('FirstOwner.fname');?>
<?= $form->input('FirstOwner.lname');?>
<?= $form->input('FirstOwner.first_owner_title');?>
html output
<form id="default" name="submit" method="post" action="/online/
relates/add"><fieldset style="display:none;"><input type="hidden"
name="_method" value="POST" /></fieldset>
the problem i am having is when i use the form helper to create the
form id all of my inputs in my filedsets disappear
if i just hard code the first line to create the form
<form id="default" method="post" name="submit" action="">
every thing works.
my concern is that if i dont use the form helper to start the form i
will vulnerable to sql injection
if i leave the first line like this<form id="default" method="post"
name="submit" action=""> will i be vulnerable to sql injection?
Does anyone no of a work around so i can use something on the lines of
this
<?php echo $form-
>create('relate',array('id'=>'default','name'=>'submit'));?>
?
--
Our newest site for the community: CakePHP Video Tutorials
http://tv.cakephp.org
Check out the new CakePHP Questions site http://ask.cakephp.org and help others
with their CakePHP related questions.
To unsubscribe from this group, send email to
[email protected] For more options, visit this group at
http://groups.google.com/group/cake-php
