Hi everyone,
I've been looking for ideas on how to prevent XSS (Cross Side Scripting). Lot's of website have different suggesting was just wondering what you guys think is the best way i'm using PHP and MYSQL
Thanks
Hi everyone
i've been googleling for the past few days for and answer and some code. I'm trying to import and xls file into a mysql database using php. i'm able to import a cvs file but i'm trying to bypass to whole save as cvs process
if someone can point me in the right direction it would be great
thanks in advance
I'm not sure about You should not try to access Elements directly.
But here's a few more ways to do it. I have tried those on my local Machine with no problem
The <form> is not needed but i did it anyway you just need to uncomment the one you like
Let me know How this works for you
<body>
<form Id="Menu" name = "Menu" method="post" action="">
<input Id="Height1" Name= "Height1" type="text" size="10" value="Fix ME">
</form>
<input type="button" onclick="Save()" style="color:ff0000" value="Plz work...">
<script type='text/javascript'>
function Save(){
document.getElementById('Menu').Height1.value="it works";
//document.Menu.Height1.value="It works also";
//Menu.Height1.value="it works";
// Menu.Height1.size = "59";
// document.Menu.Height1.value ="It Now Works";
//document.getElementById('Height1').value="WORKS!";
// Menu.elements["Height1"].value = "IT works";
}
</script></body>
Here you go just small little things
I hope This Help
<input name="Height1" type="text" size="10" value="FUK!">
<input type="button" onclick="Save()" style="color:ff0000" value="Plz work...">
<script type='text/javascript'>
function Save(){
parent.Height1.value="Ok It's fix";
// you can use either height1.value or parent.height1
//if your are to use a frame
//parent.frame['framename].height1
}
</script>
Thanks
I didnt want to use a cms application so this is great information i couldn find a login with all the features i wanted, thats why i'm building my own. I never thought about OpenId, I'll play with that too.
Hi
I'm creating my own php login and i'm going thru the prevention of sql injection. I"m musing php5 and mysql db my question is if i input the my data in my database using md5 do i still need to use mysql_real_escape_string() function
and also i wonder if md5 should be enough for encrytion or should i be using crypto() also.
THanks in advance for any sugestion and answers
I was thinking of something like this
form1.activeform.visable= false
form1.activeform.visable= true
it would close down the program and reopen right away if you dont mind the form to close this might be the cheating way to do it they only other thing that comes into my mind is make an array with all the field and loop true the array to set everything to ""