XSS or Cross Site Scripting is the ability to inject malicious
javascript or HTML to the $_POST or $_GET variables, and at the bottom
line - to get them printed and output-ed to the client through the
HTML code of the page.
In order to avoid such security issues all you have to do is to
sanitise t
Well, the function filter_input(INPUT_GET, 'kw',
FILTER_SANITIZE_ENCODED);
...seemed to take care of the example on the report by
Security Metrics.
Am I on the right track here, at least?
I'm reading pages on 'sanitizing PHP input'. Is that where I
should be headed?
Skip
Shawn McKenzie w
2 matches
Mail list logo
