Paper_UserReg(request.POST['username'],request.POST['password'],request.POST['name_of_author'],request.POST['email_of_author'],request.POST['college_name'],int(request.P OST['phone_of_author']),None)
That is NOT sanitized data, and if you think that putting them in hidden fields in some way prevents other data from being posted your sorely mistaken. ALL data coming from POST or GET should be sanitized before being applied. ~ Anders On 5/10/07, theju <[EMAIL PROTECTED]> wrote: > > The data is sanitized (taken from a form,cleaned and put in hidden > fields, confirmed by the user and then saved to a model...its just > that i've not showed all the code) and only then am I posting it to > the model. > > Anyways thanks for the idea on the super __init__ function. Will check > it up... > > Thanks Anders. > > -Thejaswi Puthraya > > > > > --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Django users" group. To post to this group, send email to django-users@googlegroups.com To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/django-users?hl=en -~----------~----~----~----~------~----~------~--~---
