dqxyh48864 2017-03-21 12:34
浏览 64

通过url传递数据库变量有多安全

Please I am designing a website and passed two IDs to through URL and got it using GET .But I noticed that anyone could change the value of ID in the URL and it alters the page content. Is there anyway to prevent this ... A code like 

www. site.com/main.php?user1_id=4&user2_id=7

If changed by anybody to 

www.site.com/main.php?user1_id=6&user2_id=10

It shows another detail not meant to be seen.

  • 写回答

1条回答 默认 最新

  • donglie7268 2017-03-21 12:37
    关注

    Implement control at server side and check if the user requesting the resource has access to it or not. Anyone can change anything at client side easily. This should be controlled from server.

    评论

报告相同问题?

悬赏问题

  • ¥15 Vue3 大型图片数据拖动排序
  • ¥15 划分vlan后不通了
  • ¥15 GDI处理通道视频时总是带有白色锯齿
  • ¥20 用雷电模拟器安装百达屋apk一直闪退
  • ¥15 算能科技20240506咨询(拒绝大模型回答)
  • ¥15 自适应 AR 模型 参数估计Matlab程序
  • ¥100 角动量包络面如何用MATLAB绘制
  • ¥15 merge函数占用内存过大
  • ¥15 使用EMD去噪处理RML2016数据集时候的原理
  • ¥15 神经网络预测均方误差很小 但是图像上看着差别太大