I have a page that allows you to submit an article which is then

Question

0

Asked: May 24, 20262026-05-24T04:48:47+00:00 2026-05-24T04:48:47+00:00

I have a page that allows you to submit an article which is then

0

I have a page that allows you to submit an article which is then placed into a database, to get to the submit page you have to be logged in (it checks session), but the processing script itself for storing into the database does not check if they are logged in, it only takes POST data from the submit page. Is this process secure? Is it possible for someone to force post information into processing.php and even if they are not logged in and not using the submit.php page (the processing script doesn’t check) and store information into the database via the processing script?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-24T04:48:48+00:00

Editorial Team

2026-05-24T04:48:48+00:00Added an answer on May 24, 2026 at 4:48 am

This is absolutely not secure. It is trivial to POST whatever data you want to wherever you want.

There are many tools for doing this. My favorite is Fiddler. One could also just make a page that posts data.

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have a page that allows you to submit an article which is then

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply