On 11/7/11 3:05 PM, Daniel C. wrote: > Not necessarily. The old import() function appears to be gone (thank > goodness) but we still have import_request_variables() and extract() > which appear somewhat better than import() but could still potentially > land you in the same boat: > > http://us.php.net/manual/en/function.import-request-variables.php > http://us.php.net/manual/en/function.extract.php
Yes, but we're still operating under the assumption that security doesn't matter, since you're importing arbitrary variables into your namespace. Steve _______________________________________________ UPHPU mailing list [email protected] http://uphpu.org/mailman/listinfo/uphpu IRC: #uphpu on irc.freenode.net
