Hi all, i want to know what are the vulnerabilities while using the GET and POST variable directly. ie with out trimming and addslashes function and mysql escape string something like that. My Question is What more we need to take care of while playing with GET and POST. What kind of attacks are there like SQL injection? ...
I have a site (SiteA) using ASP.NET membership. One thing that it must do is allow the end user at a separate site (SiteB) to launch a new browser window to a page at SiteA with POST data attached to prefill the page. If the user is logged into SiteA, then the launch from SiteB works and the page is prefilled. However, if the user is ...
I'm developing a web app specifically for mobile phones, and I've run into a doozy of a problem. On the Blackberry emulator I've installed, everything works fine. But when I run my Openwave or Nokia N60 emulators, I can't log into my app any more. When I check the logs, I find that the reason is that ALL of the $_POST variables are em...
Hello I need a way to upload a file and POST it into php page... My php page is: <?php $maxsize = 10485760; $array_estensioni_ammesse=array('.tmp'); $uploaddir = 'uploads/'; if (is_uploaded_file($_FILES['file']['tmp_name'])) { if($_FILES['file']['size'] <= $maxsize) { $estensione = strtolower(substr($_FILES['file']['name...
Hi, considering that the variable only can be String fetched from an HTML Form (input-text, textarea). ...
I use jsp to write a application, and i encounter such a problem, that the browser will always cache the URL i execute, so when user refresh the page, the action will be execute again. for example: ">transfer; if i clicked the link, and after that , i refresh the page, this action will be execute again. I also know, that i need to us...
Hi all, I'm trying to post to a webpage using WebClient in C#. Somehow the parameters are not coming through. The page itself is a php page. I've tested the same page with a regular browser/html page and then it works, so I'm expecting that it is a client issue Can anybody tell me what I might be doing wrong? WebClient myClien...
I'm tying to send POST data from one site to another (both sites have been developed by us). The problem is that the POST variables are not available if the page is requested from another domain. Even if I test it locally, but specify the complete url, the POST data is gone. So, this will work: <form method="POST" action="test.php"> ...
I have setup a wcf service. Unfortunately, when I call the service over fiddler, the web, or whereever, I get an http 400 error. I am really perplexed at where to start to solve this problem. Any suggestions are appreciated. WSDL is not an option at this time. REST is a requirement. I was able to make calls previously using GET, ho...
Hi there, I'm trying to make a post request via ajax using jQuery (for the BaseCamp API), and I can't seem to get it to work. I can get it to work using curl just fine, so I know it's something I'm doing wrong with jQuery. Here's the curl command which works: curl -H "Accept: application/xml" -H "Content-Type: application/xml" -u my....
Im working on a groovy on grails conference management system which was written by a student temp a few months ago. Unfortunately theres only a very poor documentation and the style of programming is not that nice (check out the comments)... well, heres the problem: there is a domain class "participant" - within the view there is a poss...
How do I pass the values of txtname and tel as variables to the .load??? $(document).ready(function(){ $("#add").click(function(){ $("#result").load("add.php", {name: #txtname}); }); }); The html: <p>Name:<input type="text" name="name" value="" id="txtname" /></p> <p>Telephone:<input type="text" name="tel" id="tel" va...
Suppose I have the following actions: public ActionResult DoSomething() { // Some business logic return RedirectToAction("AnotherAction", RouteData.Values); } public ActionResult AnotherAction(string name, int age) { ... } And the following form: <form method="post" action="DoSomething"> <input name="name" type="text"...
I'm trying to create a tagcloud for an application. When I click a tag from the tagcloud, the backgroud for the tag must be changed. Here a simple html code for a tag: <a about="http://localhost/d456c6" href="http://localhost/d456c6" class="tagweight0 Resource">abda</a> To change the background i'm using the following: $('tagweight0'...
I have a POST request coming to one of my pages, here is a small segment: [shipCountry] => United States [status] => Accepted [sku1] => test [product1] => Test Product [quantity1] => 1 [price1] => 0.00 This request can be any size, and each products name and quantity's key would come across as "productN" and "quantityN", where N is an...
In my struggles to make our customer's experience of our web services as good as possible I am creating a webpage where the individual customer can measure their latency and bandwidth to our site. Not really a hard task but I need some feedback on how to efficiently measure client upload bandwidth. Anyone got an exmample/hint on how to...
How can you see what the attribute rel contains when it is transferred by POST? I transfer a variable by the rel attribute by jQuery. I would like to know what the attribute, $_POST['answer'], contains. This question is based on this thread. jQuery IRC tells me that the solution seems to be Firebug somehow. How can you see POST data i...
How can you use POST in this command? var answer = $('#answer').val(); jQuery('div.answer_' + answer + ' a.delete_answer') .live('click', function(){ This should match this div.answer_answerExample a.delete_answer ...
in wordpress you can do the following: http://example.com/tag/jazz,blues/ (returns tags page with posts tagged with jazz OR blues) http://example.com/tag/jazz+blues/ (returns tags page with posts tagged with jazz AND blues) I want to be able to do the same thing with other taxonomies other than the "tag" taxonomy. I've created a "mus...
I am flabbergasted by the code, where the GET-values, such as $_GET['username'], are not included as parameters to functions. When do you you need to include POST and GET methods as parameters to functions? ...