Menu
Hi,
I use the id’s of the rows (with files) of the ‘mysql’ table directly in my HTML. The reason for this is, I know which image is dragged and dropped. Of course I use some authentication to check if the user has the permission to edit that particular file.
Is this a security issue?
[CODE]
<div id=”item_3″><img src=”/myimage.jpg” /></div>
<div id=”item_4″><img src=”/myimage.jpg” /></div>
<div id=”item_5″><img src=”/myimage.jpg” /></div>
Thanks!
Christophe