checking for [ and ] in form fields ...

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 15820
interpreted = N
texte = How do I check for [ and ] in form fields. I can't do:[showif [field]^[]and I can't do:[showif [field]^[raw][[/raw]]so what can I do?This is important, because I don't want people typing stuff like:[interpret][deletefile users.db][/interpret]into my forms, for example ... know what I mean???Of course, if the [interpret] tags have to be in the TEMPLATE before they will work on the enclosed WebDNA, then this is no big deal.But if the [interpret] tags will work even when they are located inside the same db field as the destructive WebDNA code, then we have a *very* serious problem ...Sincerely, Ken Grome ken@iav.com 808-737-6499 WebDNA Solutions http://webdna.net/ Associated Messages, from the most recent to the oldest:

    
  1. Re: checking for [ and ] in form fields ... (Kenneth Grome 1997)
  2. Re: checking for [ and ] in form fields ... (Grant Hulbert 1997)
  3. checking for [ and ] in form fields ... (Kenneth Grome 1997)
How do I check for [ and ] in form fields. I can't do:[showif [field]^[]and I can't do:[showif [field]^[raw][[/raw]]so what can I do?This is important, because I don't want people typing stuff like:[interpret][deletefile users.db][/interpret]into my forms, for example ... know what I mean???Of course, if the [interpret] tags have to be in the TEMPLATE before they will work on the enclosed WebDNA, then this is no big deal.But if the [interpret] tags will work even when they are located inside the same db field as the destructive WebDNA code, then we have a *very* serious problem ...Sincerely, Ken Grome ken@iav.com 808-737-6499 WebDNA Solutions http://webdna.net/ Kenneth Grome

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

HTML docs are wrong about listwords ... (2000) (2000) Every other record deleted (2005) Word wrapping (1997) This message couldn't reach the list! (multi-column (1998) IIS4b2 and WebCatalog b19 (1997) Faxing orders in place of email (1997) What is WebDNA (1997) Mac v. NT (1998) [ListWords] BUG? (2003) [WebDNA] Quick Date Question (2008) Appligent PDFs (was: OT - Dig Sigs) (2004) Is WebCat 3.0 necessary for calculating shipping? (2000) RE: IIS4b2 and WebCatalog b19 (1997) SmithMicro FTP problems (2002) [WebDNA] How to Grab link (2014) MacAuthorize order data fields WAS:How To question... (1997) Replace with Producteditor.tpl (2000) Plugin or CGI or both (1997) WebCat2b12 CGI Mac - [shownext] problem (1997)