[snip] Please read these pages: http://de.php.net/release_4_1_0.php http://de.php.net/manual/en/security.registerglobals.php
if your PHP setting called register_globals is turned on, then the code you propose would allow hackers to ask anything they want to your database, including destructive options. [/snip] UNLESS you declare and check your variables! -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
