Jump to content

cryptichorizon

New Members
  • Content Count

    1
  • Joined

  • Last visited

Community Reputation

0 Neutral

About cryptichorizon

  • Rank
    Newbie
  1. The short answer is yes. The value of hidden form variables can easily be changed to basically anything on the client side. You can't assume that what you put there is what you going to get back. You'll be fine if you follow good general security practices like validating the form data you receive and properly escaping values when you use them in SQL queries.
×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.