PHP and Super Global Arrays
The problem with the PHP super global arrays, such as $_GET and $_POST is they contain the raw query parameters that the browser passes. I’ve seen more than my fair share of abuse when fixing clients apps where they have not properly sanitized user input, which leads to SQL inject and XSS attacks. Continue reading…
PHP Factory & Singleton
A friend sent me an ICQ today asking an easy way to load classes on the fly, but keep a registry of them to save resources if he calls said object more than once per page load. Here is the quick example I gave him:
