Forums / Cotonti / Extensions / Support / Module main page blocking js?

Trustmaster
#36547 2012-12-15 10:57

Cool! Don't forget to pay attention to another part tensh's reply:

By the way, you don't guard the productid value (dunno how about inside the addtocart() function)- it can be potentially dangerous. You should be using cot_import() function IMO.

It is important to sanitize user input (see Validation and Messages) and make sure that unescaped strings are not used in SQL queries (I should probably write in detail about it too).

May the Source be with you!