TalkPHP - View Single Post

Kalle · 04-17-2009, 08:51 PM

Just a little security tip; Remember to escape HTML characters when using $_SERVER['PHP_SELF'], as its not filtered and may contain input that can cause XSS

04-17-2009, 08:51 PM	#14 (permalink)
Kalle The Frequenter Join Date: Sep 2007 Location: Denmark Posts: 352 Thanks: 8	Just a little security tip; Remember to escape HTML characters when using $_SERVER['PHP_SELF'], as its not filtered and may contain input that can cause XSS __________________