> >Just be careful when using extract() as it is one of those functions you >look for when checking for exploitable code. ;) For example, I have >seen nasty stuff like extract($_POST) which is register_globals all over >again. > > > Thanks for the heads up on extract. But do you see any security issues with extract($_GLOBALS)?