NYCPHP Meetup

[Daniel Convissor]

On Fri, Dec 17, 2004 at 02:47:49PM -0500, csnyder wrote:

> According to the announcement, any code that uses unserialize() on any
> values that include user input is vulnerable.

You mean _improperly validated_ user input.  Come on, who would pass 
unsanitized user input to ANYTHING? :)

--Dan

-- 
 T H E   A N A L Y S I S   A N D   S O L U T I O N S   C O M P A N Y
            data intensive web and database programming
                http://www.AnalysisAndSolutions.com/
 4015 7th Ave #4, Brooklyn NY 11232  v: 718-854-0335 f: 718-854-0409