checking for [ and ] in form fields ...

This WebDNA talk-list message is from

1997


It keeps the original formatting.
numero = 15820
interpreted = N
texte = How do I check for [ and ] in form fields. I can't do:[showif [field]^[]and I can't do:[showif [field]^[raw][[/raw]]so what can I do?This is important, because I don't want people typing stuff like:[interpret][deletefile users.db][/interpret]into my forms, for example ... know what I mean???Of course, if the [interpret] tags have to be in the TEMPLATE before they will work on the enclosed WebDNA, then this is no big deal.But if the [interpret] tags will work even when they are located inside the same db field as the destructive WebDNA code, then we have a *very* serious problem ...Sincerely, Ken Grome ken@iav.com 808-737-6499 WebDNA Solutions http://webdna.net/ Associated Messages, from the most recent to the oldest:

    
  1. Re: checking for [ and ] in form fields ... (Kenneth Grome 1997)
  2. Re: checking for [ and ] in form fields ... (Grant Hulbert 1997)
  3. checking for [ and ] in form fields ... (Kenneth Grome 1997)
How do I check for [ and ] in form fields. I can't do:[showif [field]^[]and I can't do:[showif [field]^[raw][[/raw]]so what can I do?This is important, because I don't want people typing stuff like:[interpret][deletefile users.db][/interpret]into my forms, for example ... know what I mean???Of course, if the [interpret] tags have to be in the TEMPLATE before they will work on the enclosed WebDNA, then this is no big deal.But if the [interpret] tags will work even when they are located inside the same db field as the destructive WebDNA code, then we have a *very* serious problem ...Sincerely, Ken Grome ken@iav.com 808-737-6499 WebDNA Solutions http://webdna.net/ Kenneth Grome

DOWNLOAD WEBDNA NOW!

Top Articles:

Talk List

The WebDNA community talk-list is the best place to get some help: several hundred extremely proficient programmers with an excellent knowledge of WebDNA and an excellent spirit will deliver all the tips and tricks you can imagine...

Related Readings:

Deleting Orders (1998) read and write you own cookies with webcat (1997) WC2.0 Memory Requirements (1997) Math Bug (1999) Form based Redirect (2001) New commands in Final candidate (1997) Not reading code (1997) Calculating multiple shipping... (1997) RE: Languages (1997) $Quit, $CloseDatabase corrections (1997) WebCat2b15MacPlugIn - [authenticate] not [protect] (1997) cannot delete last admin (1999) Searching multiple fields from one form field (1997) Webcat no longer supported? (2006) WebCat2b13MacPlugIn - [include] doesn't allow creator (1997) Re:2nd WebCatalog2 Feature Request (1996) Secure Server (1999) PCS Emailer's role ? (1997) 2.1b2 was SLOW ... but 2.1b3 is FAST! (1997) Silence before the storm? (2004)