Ben D
Reputation: 123
Secure Hidden form Data $_POST
I was just fiddling around in Chrome and realized that a hidden form element can be changed by a user in the Chrome inspector.
As you can see in the picture above any user can go in and edit the form in Chrome and then submit the form.
I'm curious if there is a way around this such as a more secure way of sending data to my files that I do not want to be changed by the user.
Upvotes: 3
Views: 118
Answers (1)
John Conde
Reputation: 219804
Easy, don't put it in your form. So where can you put it? Store it in a session.
Upvotes: 10
Related Questions
- Input form with hidden field how to secure it
- Post form with "secret" data from the server and open result in user browser
- Is data submitted in a form secure?
- posting hidden value
- How to protect form data on my site?
- Hidden Form Element Password Safety
- Posting data using hidden form
- Secure form submission
- Passing variables html forms in PHP securely
- PHP secure form