Re: [PHP] Re: Posting variable outside of the post form
Mpff, you should start by minding XSS attacks on PHP_SELF, and no echoing it as raw ... : http://blog.phpdoc.info/archives/13-XSS-Woes.html
Re: [PHP] Re: Posting variable outside of the post form
Hello, Use session variables -- Shafiq Rehman (ZCE) http://phpgurru.com | http://shafiq.pk On 3/13/07, Haydar Tuna <[EMAIL PROTECTED]> wrote: Hello, If your variable is not most important for your application security, you should use HTML hidden form field but If your variable is most important for your application security, you should use session variable. I think in your HTML form, you use GET method. In this method, all HTML form fields appear on your browser address bar and if you want to hide HTML form fields before send , you can use POST method. For a long HTML form variable you can use POST method:) -- Haydar TUNA Republic Of Turkey - Ministry of National Education Education Technology Department Ankara / TURKEY Web: http://www.haydartuna.net "Otto Wyss" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] >I submit a form back to itself with > > action="" methode="get" > > yet I've a large PHP variable which I'd like to access afterwards as well. > Is this possible somehow? > > O. Wyss -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP] Re: Posting variable outside of the post form
Hello, If your variable is not most important for your application security, you should use HTML hidden form field but If your variable is most important for your application security, you should use session variable. I think in your HTML form, you use GET method. In this method, all HTML form fields appear on your browser address bar and if you want to hide HTML form fields before send , you can use POST method. For a long HTML form variable you can use POST method:) -- Haydar TUNA Republic Of Turkey - Ministry of National Education Education Technology Department Ankara / TURKEY Web: http://www.haydartuna.net "Otto Wyss" <[EMAIL PROTECTED]> wrote in message news:[EMAIL PROTECTED] >I submit a form back to itself with > > action="" methode="get" > > yet I've a large PHP variable which I'd like to access afterwards as well. > Is this possible somehow? > > O. Wyss -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
