Menu
Community /Pin to ProfileBookmark
@NogDogDec 19.2005 — #extract() is fine if properly used with namespace security in mind, e.g.:
You now have variables $POST_one and $POST_two, and as long as you do not name any other variables in your script in the format $POST_xxxx, there is no risk of malicious form postings overwriting non-$_POST variables.
Can’t get submit button to appear in $_POST
** THIS ISSUE HAS BEEN RESOLVED. THANKS FOR YOUR INTEREST.
Please pardon me for posting this again, but I have waited two days for someone to respond to my earlier post, and the issue is still not resolved. Thank you for your understanding.
I’m trying to get the form’s submit button name from $_POST so that I can set the state of my page. I found an example on how to do this, but it’s not working for me. Can anyone please take a look at my code below and tell me what is wrong? Thanks much.
Here’s how I declare the start of my form:
PHP Code:
[code]<form id=”form-basic-html” name=”form-basic-html” method=”post” action=”<?php echo $PHP_SELF; ?>?state=Submit”>
Here’s how I declare my submit button within the form:
Code:
[code]<input type=”submit” name=”btn_Exam” id=”btn_Exam” value=”example” />
Then, when the form’s action invokes PHP_SELF, I use ‘print_r($_POST) to verify that ‘btn_Exam’ is found, but it’s not.
If ‘btn_Exam’ existed in $_POST, I would extract it thus:
PHP Code:
[code]extract($_POST);
if (isset($btn_Exam)) {
. . .
}
I can’t figure out why ‘btn_Exam’ does not appear in $_POST. Can anyone please help me with this? Thanks.
Sign in
to post a comment7 Comments(s) ↴
0
@NogDogDec 19.2005 — #extract() is fine if properly used with namespace security in mind, e.g.:[code=php]
$_POST['one'] = 1;
$_POST['two'] = 2;
extract($_POST, EXTR_PREFIX_ALL, "POST");
[/code]You now have variables $POST_one and $POST_two, and as long as you do not name any other variables in your script in the format $POST_xxxx, there is no risk of malicious form postings overwriting non-$_POST variables.