silvercover
Posts: 26
|
| Posted: 09/20/2011, 9:47 AM |
|
Hi,
I want to know that how much safe is CCS when it deals with passed parameters from query strings or external sources specially if parameter type was text/url.
Should I concern about bad characters in passed query strings and write my own routines rather than built-in validation functions or not?
Thanks.
_________________
The more I learn, the less I know! |
 |
 |
mamboBROWN
Posts: 1713
|
| Posted: 09/20/2011, 8:09 PM |
|
Silvercover,
I think CCS is a safe as any framework as long as you use it's recommended methods. I have never had any issues but I can only speak for my own personal experiences.
|
|
|
|
Oper
Posts: 1195
|
| Posted: 09/20/2011, 8:18 PM |
|
Like Mambo Said.
In Form CCS engine do the work.
But if you planing to use CCGETPARAM or anyother way to get URL value and use later in a SQL parse or CCDLOOKUP etc.
Remember always to use DBConnection1.TOSQL(variable,CCSTYPE)
Then you are safe.
_________________
____________________________
http://www.7bz.com (Free CMS,CRM Developed in CCS)
http://www.PremiumWebTemplate.com
Affiliation Web Site Templates
Please do backup first |
|
|
|
|
