Jump to content


Code Blocking

  • Please log in to reply
1 reply to this topic

#1 dylandcor

  • Members
  • PipPip
  • Member
  • 23 posts

Posted 25 March 2006 - 09:03 PM

I have a place where users can edit their own profile on my site. Is there any way from preventing them to access other urls because we were doing a test, and someone can get into admin accounts via javascripts. He put in the <script language="Javascript" src="blah.js"> and it got in. Is there anyway to prevent users from putting in unwanted code into their profile?

Any Suggestions?

#2 annihilate

  • Members
  • PipPipPip
  • Advanced Member
  • 63 posts
  • LocationUK

Posted 25 March 2006 - 09:50 PM

Have a look at [a href=\"http://uk2.php.net/strip_tags\" target=\"_blank\"]strip_tags[/a] function and some of the user contributed functions and responses on that page.
Personal site: NewEnigma  |  Java and JSF Discussion

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users