using the security component is an absolute requirement for beginners. especially due to missing whitelisting in default templates. besides that you pretty much only need to make sure you don't output unescaped output - using h($var) that should take care of most of the basic problems
Am Montag, 23. Juli 2012 20:04:22 UTC+2 schrieb Shahruk Khan: > > I know CakePHP does a lot of stuff for you, but if I setup a CakePHP > installation and create a CRUD app, is that it, or do I have to do anything > else to make sure the platform is secure? -- Our newest site for the community: CakePHP Video Tutorials http://tv.cakephp.org Check out the new CakePHP Questions site http://ask.cakephp.org and help others with their CakePHP related questions. To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/cake-php
