> Is there any way to defend against this? Is there any way > to ensure that when a form is submitted that the submission > request originated from your site/domain and not somewhere > else? Knowing that $HTTP_REFERER cannot be relied on as containing valid data (as some browsers don't support it)? Chris
- [PHP] Munging hidden/form variables Boget, Chris
- Re: [PHP] Munging hidden/form variables Simon Garner
- Re: [PHP] Munging hidden/form variables Boget, Chris
- Re: [PHP] Munging hidden/form variables php3
- RE: [PHP] Munging hidden/form variables Opec Kemp \( Ozemail \)
- Re: [PHP] Munging hidden/form variables Christian Reiniger
- Re: [PHP] Munging hidden/form variables Kelly Corkill
- RE: [PHP] Munging hidden/form variables Boget, Chris
- Re: [PHP] Munging hidden/form variables Chris
- Re: [PHP] Munging hidden/form variabl... Simon Garner
- Re: [PHP] Munging hidden/form var... Chris
- Re: [PHP] Munging hidden/for... Simon Garner
- Re: [PHP] Munging hidden/form var... Chris
