20 Replies Latest reply on Jul 20, 2011 6:51 PM by Kumar Pratik

    Passing parameter from flex to a php File??

    Kumar Pratik

      Hi All,

       

      I have been working on a flex web application from couple of months. Application is using MySQl database with PHP as sever side language. So for all database related stuffs I am passing different parameters to php files to do database operations(select,inser,update etc).

      Functionality wise its all working perfectly but today i faced a security threat. If a user is using any debugger tool such as firebug, he can get all the information like php file name and different parameter  i am passing, which means he can easily get all the information from my database and alter them as well.

       

      What would be the best approach to make it bit more secure? I thing i can think of is to encrypt the parameter I am passing.

      Please let me know your inputs.. Thanks for ur time

       

      Cheers,

      Pratik