NYCPHP Meetup

NYPHP.org

[nycphp-talk] security? we don't need no stinkin security!

jon baer jonbaer at jonbaer.net
Mon Dec 1 21:52:14 EST 2003


> phpBB search.php SQL Injection Vulnerability
> http://www.securityfocus.com/bid/9122

im just curious - what exactly was the solution that does work and why does
it work?  someone care to explain:

if (intval($search_id)) {
vs.
$search_id = intval($search_id);
if ($search_id) {

- jon




More information about the talk mailing list