> Anyway, it's not a big thing if you're _really_ stringent about how you > check every single variable which is used in a database query, > system/passthru/exec, or eval command, and your checking methods are > flawless, but otherwise it's just best to go to the trouble of hacking > around the input explicitly. What would you do to go about doing this? How can you be _really stringent_ in checking your variables? Check that they have a value? Chris
- [PHP] Quotes in GET variables Mark Rogers
- Re: [PHP] Quotes in GET variables Plutarck
- Re: [PHP] Quotes in GET variables Mark Rogers
- Re: [PHP] Quotes in GET variables James Holloway
- Re: [PHP] Quotes in GET variables Plutarck
- Re: [PHP] Quotes in GET variables Mark Rogers
- Re: [PHP] Quotes in GET variables Boget, Chris
- Re: [PHP] Quotes in GET variables Plutarck
