luke2012 Posted May 13, 2012 Share Posted May 13, 2012 Hi, Please forgive my ignorance in advance I was wondering whether this script by about.com http://php.about.com/od/finishedphp1/ss/php_login_code.htm was a secure script (i.e. from SQL injections etc.), just wondering if I've missed anything obvious, Huge thanks in advance, Luke Link to comment https://forums.phpfreaks.com/topic/262487-about-login-script/ Share on other sites More sharing options...
chris-s Posted May 18, 2012 Share Posted May 18, 2012 It's definitely dated. Uses the old mysql drivers... looks to depend on addslashes() for security. Looks like it can take a cookie value for the username, passing it to a query without sanitization. I say no. Link to comment https://forums.phpfreaks.com/topic/262487-about-login-script/#findComment-1346669 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.