How to prevent Cross scripting? | SoloLearn: Learn to code for FREE!

+1

How to prevent Cross scripting?

I have a variable $query I need want to echo$query, before that I will like to sanitize it so that there will be nothing that can cause Cross scripting. what is the simple and effective way to do that? $query is a varchar

html css javascript html5 php hack

4/7/2018 3:40:05 AM

Nithin

1 Answer

New Answer

+7

Nithin A simple way to prevent XSS injection from happening is to html encode all HTML data. You can do this with something like: echo htmlentities ( trim ( $query ) , ENT_NOQUOTES ); You can use the htmlspecialchars() function for encoding a subset of offending characters. Here's a good article with 14 minute video giving you more details on how to prevent XSS attacks in PHP. https://www.johnmorrisonline.com/prevent-xss-attacks-escape-strings-in-php/

David Carroll
Hot Today
Pls help to solve Sl Crashing Bug Sololearn Account When will the update for Jan 2021 be available for all? (Don't know the update version) 🤩 🇭 🇴 🇼  🇨 🇦 🇳  🇮  🇬 🇪 🇹  🇹 🇭 🇪  "🅶︎🅾︎🅾︎🅳︎ 🅲︎🅾︎🅼︎🅿︎🅰︎🅽︎🆈︎" 🇧 🇦 🇩 🇬 🇪? 🤩 Today is a holiday at the children's camp, so all the children will be served ice cream. There are 3 groups of children: 23 chi Why cant I send message to someone in sololearn C++20: constexpr, consteval, constinit - The three musketeers Hi I have a question, does anyone know why when you try to do the practice exercise they don't let you use the input? What is the world first programming language?

Send us a message