----- Original Message -----
From: "Vergoz Michael (SYSDOOR)" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Thursday, September 19, 2002 12:38 PM
Subject: [PHP-DEV] and so... there is a security problem.
Hi list,
i think that you have to return a _s64 per default, cuz for exemple i'm
using some identification coded on _s64 if i jump 21 474 836 47, intval()
will return to me a wrong number (normal) but i _can't_ know if that that
number is a valid _s64 (_s64) and there can have some big security problems
Exemple:
$id = intval($_GET['id']);
$query = "
SELECT
\"proute\"
FORM
\"polom\"
WHERE
id = $id
";
Best regards,
Vergoz Michael
SYSDOOR
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
