Welcome Guest, Not a member yet? Register   Sign In
Search Results
    Thread: Best practice of handling user's input
Post: RE: Best practice of handling user's input

Narf Wrote: (02-21-2016, 06:41 AM) -- Geril Wrote: (02-21-2016, 05:38 AM) -- Quote: -- It automatically escapes the data, yes. But you should always validate it regardless of that and here you are...
18,578 Views
10 Replies
02-21-2016, 09:44 AM
Geril
    Thread: Best practice of handling user's input
Post: RE: Best practice of handling user's input

Quote: -- It automatically escapes the data, yes. But you should always validate it regardless of that and here you aren't even checking what fields are there in $user_data. -- This is done in ...
18,578 Views
10 Replies
02-21-2016, 05:38 AM
Geril
    Thread: Best practice of handling user's input
Post: RE: Best practice of handling user's input

Let's assume that I am filtering data on output not input, so it's possible that I will have in my DB as user's first name something like this? Code: -- You are hacked: alert('Lorem Ipsum'); -- ...
18,578 Views
10 Replies
02-21-2016, 03:09 AM
Geril
    Thread: Best practice of handling user's input
Post: RE: Best practice of handling user's input

Narf Wrote: (02-20-2016, 03:25 PM) -- You're mixing input handling with concerns over output-based vulnerabilities. Input should be validated, not filtered; i.e. don't use $this->input->post('var'...
18,578 Views
10 Replies
02-21-2016, 02:40 AM
Geril
    Thread: Best practice of handling user's input
Post: Best practice of handling user's input

Hi, I wonder what is the best and the most secured way of handling user's input. Basically I have form for user's profile made by form helper like this:  Code: -- echo form_open();    echo fo...
18,578 Views
10 Replies
02-20-2016, 01:03 PM
Geril

Theme © iAndrew 2016 - Forum software by © MyBB