Maciek Sokolewicz a écrit :
Your xss answer is moot. XSS attacks can (almost) just as easily be performed via POST as they can via GET.
No, because you can't click on a link that make a post. Maybe on unsecured browser that allows Xhr (and a POST so) on every sites on the Internet.
-- Mickaël Wolff aka Lupus Michaelis http://lupusmic.org -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
