the following ensures that an form input field by the name of 'sentence' is actually sent via method=post, otherwhile you can escape it.
this is good for low level script integrity
if( isset($_POST['sentence']) ) echo $_POST['sentence'];
you might want to also look into the following functions.
rawurldecode() htmlspecialchars() addslashes() stripslashes() chop()
Chris Knipe wrote:
form.php is this:
<form method="post" action="takeform.php">
<input type="text" value="sentence">
</form>
<input type="text" name="sentence" value="sentence">
Learn to code html ;)
takeform.php is this:
<?
echo $sentence;
?>
echo $_POST['sentence'];
these codes are running at my hosting but it couldn't run on my computer. I tried on pws, apache, php 4.0.4, php 4.2.2 and php5 but it didn't work.
why i couldn't run it?
It's more than likely register_globals that is off.
-- me
-- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
