http://www.contentwithstyle.co.uk/feeds/rss/comments/134 Tue, 06 Jan 2009 10:57:15 +0000 Zend_Feed http://blogs.law.harvard.edu/tech/rss http://www.contentwithstyle.co.uk/content/fulltext-weighted-relevance/#comment-1893 http://www.contentwithstyle.co.uk/content/fulltext-weighted-relevance/#comment-1893 Never! Ever! pass in $query just like that. Its the #1 security hole in most systems. It is called SQL injection.]]> Never! Ever! pass in $query just like that. Its the #1 security hole in most systems. It is called SQL injection.]]> Mon, 15 Jan 2007 04:52:52 +0000 http://www.contentwithstyle.co.uk/content/fulltext-weighted-relevance/#comment-1894 http://www.contentwithstyle.co.uk/content/fulltext-weighted-relevance/#comment-1894
By default register_globals is off, and I always have turned it off. Which means that $query in the example above cannot refer to the equivalent of $_GET[‘query’].

That means that $query is just any variable. SURELY IT SHOULD BE ESCAPED FIRST! But you cannot really tell if that hasn’t happened by just looking at the example above.

If you were thinking that this refers to a GET variable because you are still working with register_globals turned on, then I strongly advise you to not do so anymore, because that would mean a major security hole.]]>
By default register_globals is off, and I always have turned it off. Which means that $query in the example above cannot refer to the equivalent of $_GET[‘query’].

That means that $query is just any variable. SURELY IT SHOULD BE ESCAPED FIRST! But you cannot really tell if that hasn’t happened by just looking at the example above.

If you were thinking that this refers to a GET variable because you are still working with register_globals turned on, then I strongly advise you to not do so anymore, because that would mean a major security hole.]]> Mon, 15 Jan 2007 07:05:21 +0000