(07-13-2017, 11:33 AM)ciadmin Wrote: Hmmm - ActiveRecord hasn't been a thing for several years now ... renamed the Query Builder in CI3.
It sounds like you might have overlooked the user guide section dealing with the problems you mention ... https://www.codeigniter.com/user_guide/l...urity.html
I have read this, it is not explicitly said - do i need - use
htmlspecialchars, or not?
Quote:which looks for commonly used techniques to trigger JavaScript or other types of code that attempt to hijack cookies or do other malicious things.
But what does it lack? What additional security measures must be done?
