jbingman Posted October 2, 2007 Share Posted October 2, 2007 I have just recently began to learn about cross site scripting and am worried about it. Is there anything I can do to make my login page and admin pages more secure? I realize it isn't very secure right now because its only in testing and construction right now. But I would like to get it safe before I put it up. Where can I find a place to help keep me safe from hacking? Because all my webpage is edited through the admin area. Quote Link to comment https://forums.phpfreaks.com/topic/71485-cross-site-scripting/ Share on other sites More sharing options...
Daniel0 Posted October 2, 2007 Share Posted October 2, 2007 Make sure you filter all data from the user. Only trust the data which come from yourself. Make sure users are not allowed to post HTML tags. Make sure you escape all data from the users before you use it in a query (e.g. with mysql_real_escape_string()). Quote Link to comment https://forums.phpfreaks.com/topic/71485-cross-site-scripting/#findComment-359856 Share on other sites More sharing options...
jbingman Posted October 2, 2007 Author Share Posted October 2, 2007 Ok that makes sense. Is there any links to websites that are good to teach me about security and validating forms that are good? I've found some but they aren't too great. Thanks. Quote Link to comment https://forums.phpfreaks.com/topic/71485-cross-site-scripting/#findComment-360487 Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.