Bradley Smith

I get this as well.

Thanks for the advice, I guess I have more reading to do.

Also I am curious if:

// prevent XSS
$_GET = filter_input_array(INPUT_GET, FILTER_SANITIZE_STRING);
$_POST = filter_input_array(INPUT_POST, FILTER_SANITIZE_STRING);

this would work also?

thanks
-brad

Thanks, I will investigate, but how is that safer than just using $_POST? I mean couldn’t someone also fake the objects/strings in the array or json definition? My code does do a match against the defined fields, so if there was something in there that didn’t match, my code would just skip it.

thanks!
-brad

Just made the page in draft mode and the preview works correctly. When I publish it, it stops working.