[TYPO3-dev] Where clipboard data is saved?
Thorsten Kahler
thorsten.kahler at dkd.de
Fri Feb 9 19:45:48 CET 2007
Hi Tapio,
Tapio Markula wrote on 08.02.2007 15:00:
>
> But setting
> $_GET
> from $_GET params, which has been parsed through t3lib_div::_GET();
> works - and *can't* ever be a security flaw,
> because the value is *always* went trought the t3lib_div::_GET() function.
> On the base of safe and checked $_GET param has just set another $_GET
> variable - which must be safe!
who the hell told you that? You _always_ have to validate values passed from
the client!
I hope you just wanted to make a joke.
Thorsten
More information about the TYPO3-dev
mailing list