Usually a variable called $route is used to hold controller names and actions in one variable. I can understand that it might have aesthetic benefits but I don’t get why it’s considered more “secure”? How many people are there who might change the URL to get an action(a method) with a wrong controller(or vice versa)?? And even if they do how could this be “insecure”? TYIA.
Where?
From whom?
every. single. hacker. ever.
If you do not react properly on possible situations, it’s unexpected behaviour of the application, that’s bad practise, and do never ever trust user input, that always might lead to a vulnerability.
1 Like
This topic was automatically closed 91 days after the last reply. New replies are no longer allowed.