ds2128629 2012-02-10 04:08
浏览 24
已采纳

codeigniter的url编码是否必要?

I'm passing a string from one page to another, is the url encoding necessary here?

Like so:

<?=anchor('foo/bar/'.$id.'/'.$title, 'All')?>

function bar($id, $title) {
   $data['id'] = $id;
   $data['title'] = $title;
   $this->load->view('some_view', $data);
}

As you can see these variables have no interaction with a database. What is the best way to decode these variables?

  • 写回答

1条回答 默认 最新

  • drxm5014 2012-02-10 04:11
    关注

    Yes - what if one person gives someone else a link to site.com/foo/bar/3/<script...? (Answer: it'll probably be caught by some other part of CI doing the escaping for you, but still :P)

    Always escape all user input, even if you don't think it matters, because you can't be certain.

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

悬赏问题

  • ¥100 set_link_state
  • ¥15 虚幻5 UE美术毛发渲染
  • ¥15 CVRP 图论 物流运输优化
  • ¥15 Tableau online 嵌入ppt失败
  • ¥100 支付宝网页转账系统不识别账号
  • ¥15 基于单片机的靶位控制系统
  • ¥15 真我手机蓝牙传输进度消息被关闭了,怎么打开?(关键词-消息通知)
  • ¥15 装 pytorch 的时候出了好多问题,遇到这种情况怎么处理?
  • ¥20 IOS游览器某宝手机网页版自动立即购买JavaScript脚本
  • ¥15 手机接入宽带网线,如何释放宽带全部速度