0
why $_GET is dangerous? Does it?
I,ve read about it could be not safety for us to use it but when a
6 Réponses
+ 4
The get method is one of the way to send client information to web server. This method send user information append to URL . Eg: http://WWW.test.com/index.php?book=1. Therefore information send through get method are visible to everyone .so sensitive information such as password should not be send via get method.
+ 3
get method is not secured and anyone could easily retrieve personal information as it will be visible to everyone.
+ 1
because the method GET displays all the value or information in the address bar from the input box you submitted from the form. for example you have a login form. then your username and password will display to the URL. unlike the method POST which is invisible.
+ 1
get is insecure, if you don't use it right, but it's simply an needed thing for Interactive Website. for instance don't Output it directly to Client, escape it when using in database with pdo and never ever make an include with it. you should never trust User Input, no matter if it is get Post request files or whatever
0
if you use $_GET user can cheng send information
user can exploit from address (get information)
0
its dangerous, but if you send encryption 256bits of data, then is more complicaded to others users to decode and get your important information