On Thu, Apr 26, 2012 at 12:58 PM, Stuart Dallas stu...@3ft9.com wrote:
On 26 Apr 2012, at 18:37, Jim Giner wrote:
Im no expert, but why would you expose a query to the world thru the use of
a GET? Why not just collect the params and build the string in your code?
That is how people hack into
On 04/27/2012 10:56 AM, Chris Stinemetz wrote:
I still haven't been able to find a solution. Is there anyone out
there that knows how to keep the query string intact?
Thank you,
Chris
urlencode($storerow['store_subject'])
--
Thanks!
-Shawn
http://www.spidean.com
--
PHP General Mailing
On 27 Apr 2012 at 16:56, Chris Stinemetz chrisstinem...@gmail.com wrote:
On Thu, Apr 26, 2012 at 12:58 PM, Stuart Dallas stu...@3ft9.com wrote:
On 26 Apr 2012, at 18:37, Jim Giner wrote:
Im no expert, but why would you expose a query to the world thru the use of
a GET? Why not just collect
On Fri, Apr 27, 2012 at 11:09 AM, Shawn McKenzie nos...@mckenzies.net wrote:
On 04/27/2012 10:56 AM, Chris Stinemetz wrote:
I still haven't been able to find a solution. Is there anyone out
there that knows how to keep the query string intact?
Thank you,
Chris
Hello list,
I'm trying to pass a query string through $_GET but for some reason
the array is being split on ''. How may I avoid this so it stays
intacted?
user selection portion:
while($storerow = mysql_fetch_assoc($storesresult))
echo 'h4a href=store.php?id=' . $storerow['store_subject'] . ''
On 26 April 2012 22:27, Chris Stinemetz chrisstinem...@gmail.com wrote:
Hello list,
I'm trying to pass a query string through $_GET but for some reason
the array is being split on ''. How may I avoid this so it stays
intacted?
user selection portion:
while($storerow =
Im no expert, but why would you expose a query to the world thru the use of
a GET? Why not just collect the params and build the string in your code?
That is how people hack into your database - via a re-formed query. You're
giving someone an open invitation.
--
PHP General Mailing List
On 26 Apr 2012, at 18:37, Jim Giner wrote:
Im no expert, but why would you expose a query to the world thru the use of
a GET? Why not just collect the params and build the string in your code?
That is how people hack into your database - via a re-formed query. You're
giving someone an
8 matches
Mail list logo
