PHP : HTTP header manipulation

PHP : Hardcoded encryption key

PHP : Making decisions using untrusted data