This is mike’s answer with some annotations for the magic numbers. It seemed to work fine for me for some test data: function calc_distance($point1, $point2) { $radius = 3958; // Earth’s radius (miles) $deg_per_rad = 57.29578; // Number of degrees/radian (for conversion) $distance = ($radius * pi() * sqrt( ($point1[‘lat’] – $point2[‘lat’]) * ($point1[‘lat’] – … Read more
Edit: SHA1 is no longer considered secure. Stored password hashes should also be salted. There are now much better solutions to this problem. You could use something like this: //access.php <?php //put sha1() encrypted password here – example is ‘hello’ $password = ‘aaf4c61ddcc5e8a2dabede0f3b482cd9aea9434d’; session_start(); if (!isset($_SESSION[‘loggedIn’])) { $_SESSION[‘loggedIn’] = false; } if (isset($_POST[‘password’])) { if … Read more
The idea behind email-injection is that attacker inject line feed (LF) in the email headers and so he adds as many headers as he wants. Stripping those line feeds will protect you from this attack. For detailed info check http://www.phpsecure.info/v2/article/MailHeadersInject.en.php The best practice is to rely on a well-written, frequently updated and widely-used code. For … Read more
Change $info=$_POST[‘id[]’]; to $info=$_POST[‘id’]; by adding [] to the end of your form field names, PHP will automatically convert these variables into arrays.
You can either retrieve and manipulate cookies on the server side using PHP or client side, using JavaScript. In PHP, you set cookies using setcookie(). Note that this must be done before any output is sent to the browser which can be quite the challenge in WordPress. You’re pretty much limited to some of the … Read more
name refers to the filename on the client-side. To get the filename (including the full path) on the server-side, you need to use tmp_name: $handle = fopen($_FILES[“UploadFileName”][“tmp_name”], ‘r’);
PHP does not support named parameters for functions per se. However, there are some ways to get around this: Use an array as the only argument for the function. Then you can pull values from the array. This allows for using named arguments in the array. If you want to allow optional number of arguments … Read more
One of my favorite frameworks for doing this is Yahoo!’s Browser History Manager. You register events and it calls you back when the user returns Back to that state. And if you want to learn how it works, here’s a fun blog entry about the decisions Yahoo! made when designing it.
It could be: function split2($string, $needle, $nth) { $max = strlen($string); $n = 0; for ($i=0; $i<$max; $i++) { if ($string[$i] == $needle) { $n++; if ($n >= $nth) { break; } } } $arr[] = substr($string, 0, $i); $arr[] = substr($string, $i+1, $max); return $arr; }
If you want to pass an array as parameter, you would have to add a parameter for each element. Your query string would become: ?arr[]=1&arr[]=2&arr[]=3&arr[]=4 As others have written, you can also serialize and unserialize the array. But do you really have to send the data to the client again? It looks like you just … Read more