--- Marek Kilimajer <[EMAIL PROTECTED]> wrote: > This method does not lose any post data as the whole $_POST array is > serialized. Then it is unserialized back to $_POST array at the second > page.
It loses all new data: <input type="hidden" name="post" value="<?php echo htmlspecialchars(serialize($_POST)); ?>" /> <input type="text" name="this_will_be_lost" /> Because of this: $_POST = unserialize(stripslashes($_POST['post'])); The method is fine, but it's no simpler than the other person's suggestion when this specific scenario is considered. More logic is necessary to prevent the loss of data. Chris ===== Chris Shiflett - http://shiflett.org/ PHP Security - O'Reilly Coming mid-2004 HTTP Developer's Handbook - Sams http://httphandbook.org/ PHP Community Site http://phpcommunity.org/ -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
