that way the security hole can be closed, as you specify what variables you would like extracted$input = array('name' = reply to ceo AT l-i-e DOT com: I don't think it's a risk, as all of your request variables will be tagged with the prefix.

As long as you don't prefix any of your internal variables with the same, you should be fine.

Better to import precisely the variables you need, and initialize anything else properly.

import_request_variables() is gone from PHP since version 5.4.0. For example:import_request_variables('gp', 'v_'); Can be replaced with:extract($_REQUEST, EXTR_PREFIX_ALL|EXTR_REFS, 'v'); import_request_variables does *not* read from the $_GET, $_POST, or $_COOKIE arrays - it reads the data directly from what was submitted.

If you're interested in importing other variables into the global scope, such as parameter, you can specify which request variables to import.

You can use ' G', ' P' and ' C' characters respectively for GET, POST and Cookie.

The software on TUFa is 100% free to use, share, and modify!

If you have a helpful improvement or bug fix to a product, please email it to [email protected], and I’ll consider it for inclusion, with a nod to your contribution of course. Peace Corps from 1997-99 in The Gambia, West Africa.


It is useful if you disabled register_globals, but would like to see some variables in the global scope.I have been programming since my freshman year in college in 1993. Need someone to help me with my current Java Swing application.If you do email me, please do not be too disappointed if you don’t get an immediate response. My interests include reading, hiking, and social dancing, and board games.It’s not personal, I’m just super busy and I get a ton of email! I certainly do not expect that you’ll have problems with the TUFa software, but you should keep in mind that software is inherently complex, and even the most advanced, highly developed products out there have security holes and bugs. This website was started in late 1999 with the release of TUFa T and Flash Chat, my first two scripts.

Leave a Reply