> They had the exact same problems w/XSS, no input validation. Input validation? Don't you mean output escaping? You must not allow uber leet usernames like |<33|>. :)
-john cambpell _______________________________________________ New York PHP Community Talk Mailing List http://lists.nyphp.org/mailman/listinfo/talk NYPHPCon 2006 Presentations Online http://www.nyphpcon.com Show Your Participation in New York PHP http://www.nyphp.org/show_participation.php
