Jump to content

Archived

This topic is now archived and is closed to further replies.

dylandcor

Code Blocking

Recommended Posts

I have a place where users can edit their own profile on my site. Is there any way from preventing them to access other urls because we were doing a test, and someone can get into admin accounts via javascripts. He put in the <script language="Javascript" src="blah.js"> and it got in. Is there anyway to prevent users from putting in unwanted code into their profile?

Any Suggestions?

Share this post


Link to post
Share on other sites
Have a look at [a href=\"http://uk2.php.net/strip_tags\" target=\"_blank\"]strip_tags[/a] function and some of the user contributed functions and responses on that page.

Share this post


Link to post
Share on other sites

×

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.