[eluser]Clooner[/eluser]
[quote author="WanWizard" date="1280925602"]Disadvantage of that solution is that you parse the raw query string, including all nasty stuff inside it. Be sure to check and clean it before using it.
That's wy the extension of the Input class, and overloading _sanitize_globals(), is a better solution. It re-enables $_GET within the normal CI flow, so all checks, XSS cleaning, etc, will be done for you.
And no, I don't understand why it is disabled. It is perfectly fine to have it enabled, without it interfering with CI URI design or routing. Plenty of external services require query strings, so it's normal to expect this to work.[/quote]