Jump to content

Recommended Posts

Posted

Hi everyone,

I've been looking for ideas on how to prevent XSS (Cross Side Scripting). Lot's of website have different suggesting was just wondering what you guys think is the best way i'm using PHP and MYSQL

Thanks

Posted

Using a decent programming framework really takes the effort out of things like this, letting you concentrate on the real stuff, dammit I should like a brochure.

For php and mysql I can recommend CakePHP, it will provide you with everything you need, and do what Sparda says, which is the correct answer.

Posted

it's easy.. change the < and > and " into < and > and &quote; through the input.. in php

Rendering most if not all of XSS usless...

Posted
it's easy.. change the < and > and " into < and > and &quote; through the input.. in php

Rendering most if not all of XSS usless...

Its not even most, you have to handle all sorts of encodings to be really safe.

Posted

It's Cross-Site Scripting. With ASP you use command objects for your queries so they are strongy-typed. In PHP you cry.

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...