Is there any security risk/problem with doing this?

xconspirisist

// merge $_GET and $_POST into $submit.
$_ARGS = array();
foreach($_GET as $key => $value) {
	$_ARGS[$key] = $value;
}

foreach($_POST as $key => $value) {
	$_ARGS[$key] = $value;
}

$_ARGS = array_unique($_ARGS);

unset($_GET);
unset($_POST);
unset($HTTP_GET_VARS);
unset($HTTP_POST_VARS);

Shrike

You could just use $_REQUEST instead 😉

bradgrafelman

Heh, yeah, this is almost identical to $REQUEST. "Almost" in the fact that it's missing the $COOKIE superglobal.

xconspirisist

Ah well, I didn't know about $_REQUEST. Many thanks 🙂

Is it generally considered good practice to use it?

bradgrafelman

shrug It depends. Why not use either $GET or $POST ? If you don't know where data is coming from, I'd think you need to redesign your application.