What are some potential pitfalls of using $_GET instead of $_POST in PHP form processing?

Using $_GET instead of $_POST in PHP form processing can expose sensitive data as it appends form data to the URL, making it visible in the browser history and potentially accessible to others. To mitigate this security risk, it is recommended to use $_POST for handling form submissions, especially when dealing with sensitive information like passwords or personal data.

<form method="post" action="process_form.php">
  <label for="username">Username:</label>
  <input type="text" id="username" name="username">
  
  <label for="password">Password:</label>
  <input type="password" id="password" name="password">
  
  <button type="submit">Submit</button>
</form>
```

In the process_form.php file:

```php
<?php
if($_SERVER["REQUEST_METHOD"] == "POST") {
  $username = $_POST['username'];
  $password = $_POST['password'];
  
  // Process the form data securely
}
?>