Jump to content

[SOLVED] Do you need to run $_POST data through mysql_real_escape_string?


limitphp

Recommended Posts

What about something as simple as

index.php?logout=yes

 

And then in my code, all I do is check to see it $logout = "yes"

 

If it does I do stuff, if not I do nothing.

 

$logout is never used in a query.

 

But could they still inject some bad stuff in the querystring?

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.