[development] Porting - Quick security reminders

[Konstantin Käfer]

Am 19.12.2006 um 17:34 schrieb Heine Deelstra:

> Basic sanity checks of course still apply: if $from_user is empty  
> you have an empty IN() clause regardless.

Well, if $from_user is empty, count($from_user) will return 0. The  
PHP Manual states that the second parameter to array fill needs to be  
 > 0.

Konstantin Käfer – http://kkaefer.com/