verdrm Posted October 11, 2007 Share Posted October 11, 2007 Can everyone please add ANYTHING you know of to this post regarding SQL injections, XSS/CSS vulnerabilities, JavaScript vulnerabilities etc? I think many of us would appreciate a HUGE list of things to check for when designing a database-oriented website. Add anything you know of below. Thanks! Quote Link to comment Share on other sites More sharing options...
jjmusicpro Posted October 11, 2007 Share Posted October 11, 2007 tons of stuff that are listed on the new about sql injections..... Quote Link to comment Share on other sites More sharing options...
verdrm Posted October 11, 2007 Author Share Posted October 11, 2007 Can you provide a link? Quote Link to comment Share on other sites More sharing options...
pocobueno1388 Posted October 11, 2007 Share Posted October 11, 2007 Here is a very useful class you can use when you are allowing users to freely input a large amount of text that allows HTML and Javascript. http://htmlpurifier.org/ Always make sure to use mysql_real_escape_string() on ALL variables being used in a query. If you search Google on PHP security topics, you will find plenty of articles. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.