StuartB1967
New Member
Let's say i have a form \[code\]<form action="delete_post.php" method="post">...</form>\[/code\] on my website: http://mysite.com and the file \[code\]action/delete_post.php\[/code\] deletes the post with matches the id given in the form.Can somebody try to delete random posts from my website by building a site with a form:\[code\]<form action="http://mysite.com/action/delete_post.php' method="post">...</form>\[/code\]and passing along id's of posts he wants to delete [just for the fun of being evil or to inflict damage to a concurrent's website or whatever] ?You could imagine a whole bunch of stuff someone could do targeting your form processing files like that, so do i need to secure my files against that sort of threats?PS.: I am not affiliated with http://mysite.com