What you need is XSS cleanup. Try with http://bakery.cakephp.org/articles/view/brita-component-with-html-purifier You can use Sanitize::stripScripts(), but htmlpurifier is much better.
On Feb 11, 7:13 am, Yogesh <[email protected]> wrote: > Hi, > I want to avoid the script tag so that no one do the hack or insert > the records using script tag. > I don't know what it should be called exactly, but in my database some > times records get inserted automatically and continuously about 100 to > 150 records, these are seems to be inserted using some script and all > the records are like some javascript code or some links. and if Model > does this automatically how can these records get inserted. or I am > understanding the Data sanitization meaning in wrong way. > > On Feb 10, 2:20 pm, Miles J <[email protected]> wrote: > > > The model automatically sanitizesdatawhen inserting and selecting > > queries. --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "CakePHP" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/cake-php?hl=en -~----------~----~----~----~------~----~------~--~---
