PHP Passing Variables Between Pages and Security

---

• From: "Skeets" <skillet3232@xxxxxxxxx>
• Date: 9 Feb 2006 10:18:44 -0800

---

i'm passing session and hidden variables between pages. not to mention
post values.

i'm a little concerned that someone with sufficient knowledge could
spoof these vlaues and manipulate the program.

is this a valid concern? i'm thinking i can check the submitting page
setting up something around the following the following code...

$base_name = basename($_SERVER['PHP_SELF']);

is this a good bet? is there a better way?

tia...

ps - posted this on php.general and, after 2 days w/o a response,
realized that probably wasn't the best place to post it.

.

---

• Follow-Ups:
  • Re: PHP Passing Variables Between Pages and Security
    • From: Kevin D.
  • Re: PHP Passing Variables Between Pages and Security
    • From: Peter Fox
  • Re: PHP Passing Variables Between Pages and Security
    • From: Justin Koivisto
  • Re: PHP Passing Variables Between Pages and Security
    • From: Gordon Burditt
  • Re: PHP Passing Variables Between Pages and Security
    • From: Peter Chant

• Prev by Date: upload images
• Next by Date: Re: upload images
• Previous by thread: upload images
• Next by thread: Re: PHP Passing Variables Between Pages and Security
• Index(es):
  • Date
  • Thread

---

Relevant Pages PHP Passing Variables Between Pages and Security ... i'm passing session and hidden variables between pages. ... i'm a little concerned that someone with sufficient knowledge could ... spoof these vlaues and manipulate the program. ... (php.general) Re: PHP Passing Variables Between Pages and Security ... i'm a little concerned that someone with sufficient knowledge could ... spoof these vlaues and manipulate the program. ... (comp.lang.php)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(12)