Okay, somebody save me from myself. I can't get my request to clean.



Code:
---------------
Code is only visible to licensed users, and only when logged into the forums.
---------------



Now, if I go ahead and just use $_GET instead of cleaning, it works fine -- but it fails if I try to use the cleaned var. What am I missing here?

Code:
---------------
Code is only visible to licensed users, and only when logged into the forums.
---------------

Still fails incorrect. That's alright though, I'm just going to use $_GET -- it never touches SQL, so I don't see how it could be exploited.

Why are are seeing if the hash is an integer? Shouldn't it be TYPE_STR?



Code:
---------------
Code is only visible to licensed users, and only when logged into the forums.
---------------

Ha ha... wow. Thanks Harmor, I'm feeling a wee bit stupid.

Ha ha... wow. Thanks Harmor, I'm feeling a wee bit stupid.
Everybody has one of those days.
I gave you the idea and I fixed your code.
I want some credit


j/k :)
Good luck on your hack

Ha ha, well I reminded you of your missing table prefixes! :p

Don't worry, I'll mention ya.

(small print though)

There was more wrong than just that.

What else is wrong? Because it's working fine now after changing the type.

We love seeing you make an ass out of yourself.