Programmer's Ultimate Security DeskRef

Prototype: ArrayDeleteAt(array, position)
Summary: This function deletes an element from an array.
Description: The function attempts to delete the element located at a given position. The function has two input variables: the array and the position. The function will return TRUE if successful, and FALSE if not. The function will recalculate the indexing, as well, when deleting the member of the array. Thus, when deleting multiple elements, this fact must be considered.
Risk: Elements in an array are common targets of SQL injection and manipulation attacks in addition to cross-site scripting (CSS/XSS) attacks. These data elements are commonly stored and allowed to pass through weakly vetted input streams and during analysis within the program are executed thereby potentially putting additional data at risk. Restrict all input data for arrays that is human generated.
Impact: Low
Cross References: ArrayInsertAt, ArrayNew, ArrayToList
Prototype: chdir EXPR, chdir
Summary: This function changes the current, active directory.
Description: The function attempts to change the working directory of the active process. The function can handle one argument: the new target directory. However, if the user does not specify, the function will attempt to change the directory to the user's home directory. The function returns a Boolean value upon completion: TRUE for success, FALSE for failure.
Risk: This function poses minimal risk but the result of the changed directory should be limited to a set of directories for the desired resource in other words, application users should not be able...