Hi,
I'm building a login page that redirects the user to the login form when an
incorrect password is entered. An error message is passed as an URL
parameter. Something like:
if(!$pwd == $correctPwd){
header('Location: ' . urlencode('loginForm.php?error=Incorrect
password'));
exit;
}
Ok, thnx, problem solved.
But about the XSS attacks: what is a XSS attack, and is there a way I can
let users still use some HTML tags (like B and BR)?
TIA,
Arnout
Marek Kilimajer [EMAIL PROTECTED] schreef in bericht
news:[EMAIL PROTECTED]
Arnout Boks wrote:
Hi,
I'm building a login page
The exact implementation differs with your database system, but as an
example for MySQL:
select name=select size=1
?php
$result = mysql_query($query);
while($row = mysql_fetch_assoc){
echo(option
value=\{$row['name_of_value_field']}\{$row['name_of_description_field']}
Maybe it helps to open the address with the fopen( )- or file( )-function to
read it's contents.
I use this method to get data from (dynamic) html pages on another website.
I don't have that much knowledge about Java servlets, so I don't know if
this works for that also.
Arnout
Matt Busche
There is no need to use PHP to include HTML in HTML.
You could also use the HTML server-side #include-command.
Greetz,
Arnout
Torsten Roehr [EMAIL PROTECTED] schreef in bericht
news:[EMAIL PROTECTED]
Harlequin [EMAIL PROTECTED] wrote in message
news:[EMAIL PROTECTED]
is there a HTML
of this construction.
Hope this is good solution for your application.
greetz,
Arnout Boks
Warren Vail [EMAIL PROTECTED] schreef in bericht
news:[EMAIL PROTECTED]
Perhaps this is more about HTML than PHP, but the PHP $_FILES var seems to
be set up to allow a list of files to be uploaded. How does one get
== Quote from http://php.us.themoes.org/manual/en/ref.mssql.php: ==
To use the MSSQL extension on Unix/Linux, you first need to build and
install the FreeTDS library. Source code and installation instructions are
available at the FreeTDS home page: http://www.freetds.org/
Hope this helps you,
7 matches
Mail list logo
