TheFilmGod Posted February 15, 2010 Share Posted February 15, 2010 Sanitizing user input is probably one of the most important things a web developer can do. I am currently designing the function/class that will deal with user input. Is using htmlentities() enough? Or is there something else I need to keep in mind? Also, if I use htmlentities() do I still need to use mysql_real_escape_string()? EDIT: Sorry, wrong forum! Link to comment https://forums.phpfreaks.com/topic/192081-sanitizing-user-input-against-xss/ Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.