0

why $_GET is dangerous? Does it?

I,ve read about it could be not safety for us to use it but when a

15th Jun 2016, 4:49 AM
Boris Atanasov
Boris Atanasov - avatar
6 odpowiedzi
+ 4
The get method is one of the way to send client information to web server. This method send user information append to URL . Eg: http://WWW.test.com/index.php?book=1. Therefore information send through get method are visible to everyone .so sensitive information such as password should not be send via get method.
15th Jun 2016, 6:31 AM
sitharamubeen
+ 3
get method is not secured and anyone could easily retrieve personal information as it will be visible to everyone.
15th Jun 2016, 8:20 AM
pooja banga
+ 1
because the method GET displays all the value or information in the address bar from the input box you submitted from the form. for example you have a login form. then your username and password will display to the URL. unlike the method POST which is invisible.
15th Jun 2016, 5:39 PM
Gerry Pantaleon
Gerry Pantaleon - avatar
+ 1
get is insecure, if you don't use it right, but it's simply an needed thing for Interactive Website. for instance don't Output it directly to Client, escape it when using in database with pdo and never ever make an include with it. you should never trust User Input, no matter if it is get Post request files or whatever
16th Jun 2016, 6:34 AM
Andreas Höhne
Andreas Höhne - avatar
0
if you use $_GET user can cheng send information user can exploit from address (get information)
16th Jun 2016, 5:36 AM
mohammad reza khodami
0
its dangerous, but if you send encryption 256bits of data, then is more complicaded to others users to decode and get your important information
17th Jun 2016, 6:08 AM
Alberto Davila
Alberto Davila - avatar