I’ve read that using $_SERVER[‘PHP_SELF’] is hackable. I am in the process of using some old code on a new website and I have:
<a href="<?php echo $_SERVER['PHP_SELF']; ?>?action=log_out">Click here to log out.</a>
What is the proper syntax to change the php to html and still use the log_out action?
Thanks