Web lists-archives.com

Re: [PHP] Do I need to worry about check boxes?




Consider your code

<input type="checkbox" name="vehicle" value="Bike"> I have a bike<br>

But, because I wish to break your environment and give an error that may
lead to identifying a vulnerability I make my own form and do..

<input type="text" name="vehicle" value="really really really long string"
/><br>

Then things can go really wrong, really fast.
NEVER TRUST USER INPUT!

http://www.phpro.org/tutorials/Validating-User-Input.html

Enjoy, Kev

-- 
-- 
"Democracy is two wolves and a lamb voting on what to have for lunch.
Liberty is a well-armed lamb contesting the vote."