Security question?

M

MilanB

Application has a webform where user can edit/modify some information that
are stored in database.

When I show data to user, I must somewhere memorize ID of database record
that is currently edited.

Where to do that? So malicious users can not chage that ID (of current
edited record), and in that manner modify some other record, and not current
one?
 
Y

Yunus Emre ALPÖZEN [MCSD.NET]

store it in viewstate and use viewstatemac


--
HTH

Thanks,
Yunus Emre ALPÖZEN
BSc, MCSD.NET
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Why is updating in DELETE trigger delayed when fetching user? 1
Can't execute php to delete multiple rows in database 3
Password validation security issue 19
Question about my projects 3
[ANN] Samizdat 0.6.2: Security, Plugins, Flowplayer 3
I need help in understanding these files on my phone, Could someone help me understand these files? Urgent help needed. Please help. 1
Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples. 2
Elementary security questions 0

Members online

No members online now.
Total: 33 (members: 0, guests: 33)
Robots: 91

Forum statistics

Threads
473,754
Messages
2,569,522
Members
44,995
Latest member
PinupduzSap

Latest Threads

Top