How to prevent Cross scripting? | SoloLearn: Learn to code for FREE!

+1

How to prevent Cross scripting?

I have a variable $query I need want to echo$query, before that I will like to sanitize it so that there will be nothing that can cause Cross scripting. what is the simple and effective way to do that? $query is a varchar

html css javascript html5 php hack

4/7/2018 3:40:05 AM

Nithin

1 Answer

New Answer

+7

Nithin A simple way to prevent XSS injection from happening is to html encode all HTML data. You can do this with something like: echo htmlentities ( trim ( $query ) , ENT_NOQUOTES ); You can use the htmlspecialchars() function for encoding a subset of offending characters. Here's a good article with 14 minute video giving you more details on how to prevent XSS attacks in PHP. https://www.johnmorrisonline.com/prevent-xss-attacks-escape-strings-in-php/

David Carroll
Hot Today
Can I log two devices for one account ? Is it important for a programmer to know English? Trying to solve the popsicles problem but it's showing test case 1 green and 3 and 5 red what do I do next to solve the problem Why we don't use data type in python for declaring variable There is a program c# that has the basic code, such as: Text Box. Picture Box. button And... How to add multiple videos Why do companies ask for bank details while getting something even if it's free? Just like solo learn pro..... Please explain why output is true. Important Здесь есть русскоговорящие?

Send us a message