Ferenc Engard wrote: > > Not having read it, but I would assume that one of the recommended > > settings is not to extrapolate ?test=1 into $test, as this was an > > acknowledged source of security holes in php applications. - The point > > being that issues like this will come up, and it will hint to developers > > that they should start looking at using HTTP_POST/GET_VARS or $_GET or & > > $_POST. > > I have a problem with this approach: sometimes my page doesn't know how > (with GET or POST) it gets it's data. It would be good if there were be > an array which contains both of it's content.
http://aspn.activestate.com/ASPN/Mail/Message/php-general/936965 "- $_REQUEST (this name might change) - includes the data from $_GET, $_POST, $_COOKIE and $_FILES, all in one array, for those users who don't really care to differentiate between the various types of input." Emile --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
