3
Sorry Ghia, I wan't suggesting using a link, it's just that I had the error message from this function in an old module:
le="color: #000000"><?php $q_str = "DELETE FROM " . $xoopsDB->prefix('arms_moderators') . " WHERE uid=$arms_uid AND sec_id=$arms_secid"; if ($xoopsDB->query($q_str)): { redirect_header('index.php?w=moderators', 1, _MM_MOD_DELETED ); } else: { print_and_die( sprintf(_ME_ARMS_SQL_ERROR, $q_str) ); } endif;
and changing the 'query' to 'queryF' fixed it.
I have since found a quote in the Xoops FAQ
Quote:
using queryf is insecure as it doesn't distinguish between _POST and _GET and will likely lead to security exploitation via XSS or CSRF
So... in my function (I didn't write it BTW) what's causing the error. I'm guessing the redirect?
A thread is for life. Not just for Christmas.