Quote:
|
Originally Posted by 4Pics
Isn't the $_GET part bad for security?
I can pass whatever I want to the variable.
|
This is true im new at php
change the abopve code to the following to be more secure
Code:
<?php
$mov = $_GET['x'];
$mov = strip_tags($mov);
echo "<center>add any html here dont use double quotes<embed src=$mov.mpg></embed>";
?>