Jump to content

array


Daney11

Recommended Posts

Basically i am using GET to get news_id etc from the url.

 

But if a user enters

 

www.site.com/news_more.php?news_id[] <----

instead of

www.site.com/news_more.php?news_id=123

 

the site breaks up, same with <marquee>lol</marquee> etc inside the url. I need to block those hacking attempts out etc.

 

Link to comment
https://forums.phpfreaks.com/topic/91871-array/#findComment-470489
Share on other sites

if(isset($_GET['result_id'])){

if(!empty($_GET['result_id']) && is_numeric($_GET['result_id'])){
$result_id = $_GET['result_id']; 

 

im using the above in my script and it works perfect, but would anyone change anything?

 

Basically the result_id CAN ONLY be a number and cant allow any injection scripting etc..

 

Would anyone change anything on that?

 

 

Link to comment
https://forums.phpfreaks.com/topic/91871-array/#findComment-470506
Share on other sites

Archived

This topic is now archived and is closed to further replies.

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.