I have this script in my header: if (isset($_COOKIE[‘username’])) {$_SESSION[‘username’] = $_COOKIE[‘username’];} if (isset($_COOKIE[‘is_logged_in’]))

Question

0

Asked: May 31, 20262026-05-31T09:52:45+00:00 2026-05-31T09:52:45+00:00

I have this script in my header: if (isset($_COOKIE[‘username’])) {$_SESSION[‘username’] = $_COOKIE[‘username’];} if (isset($_COOKIE[‘is_logged_in’]))

0

I have this script in my header:

if (isset($_COOKIE['username'])) {$_SESSION['username'] = $_COOKIE['username'];}
if (isset($_COOKIE['is_logged_in'])) {$_SESSION['is_logged_in'] = $_COOKIE['is_logged_in'];}

Should I protect my cookies from injections?
like stripslashes etc.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-31T09:52:46+00:00

Editorial Team

2026-05-31T09:52:46+00:00Added an answer on May 31, 2026 at 9:52 am

First and foremost you should rethink your authentication system. Because currently, anyone who knows how to alter cookies can impersonate any user without proper authentication. That’s a way more actual security flaw.

Injection vulnerabilities depend on the actual context the values are inserted into and without providing information about that, we won’t be able to help you.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I have this script in my header: if (isset($_COOKIE[‘username’])) {$_SESSION[‘username’] = $_COOKIE[‘username’];} if (isset($_COOKIE[‘is_logged_in’]))

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply