Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming Best way of safely outputting user submitted content
Best way of safely outputting user submitted content
  • El Forum
    Guest
  •  
#1
02-06-2012, 03:05 PM

[eluser]jakub[/eluser]
Today I found myself trying to think, what if for some reason my code is sql injected and a comment or a user post starts loading javascript or does something else.

I want to be able to sanitize output. Appart from my input security, is there something I should consider like:

Code:
sanitize_output($post['comment']);

or does CI handle this for me? I'm stripping things like common tags, but I'm concerned what if someone uses Cyrillic or alphabet to inject something.

Guess I'm looking for best case of outputting user content, I'm already securing the input/submit, I want to make sure the output is handled as well.

Thanks!


Messages In This Thread
Best way of safely outputting user submitted content - by El Forum - 02-06-2012, 03:05 PM
Best way of safely outputting user submitted content - by El Forum - 02-06-2012, 03:22 PM
Best way of safely outputting user submitted content - by El Forum - 02-06-2012, 05:42 PM
Best way of safely outputting user submitted content - by El Forum - 02-06-2012, 06:27 PM
Best way of safely outputting user submitted content - by El Forum - 02-06-2012, 06:28 PM
Best way of safely outputting user submitted content - by El Forum - 02-06-2012, 10:36 PM
Best way of safely outputting user submitted content - by El Forum - 02-06-2012, 10:45 PM
Best way of safely outputting user submitted content - by El Forum - 02-06-2012, 10:48 PM
Best way of safely outputting user submitted content - by El Forum - 02-07-2012, 04:17 AM



Theme © iAndrew 2016 - Forum software by © MyBB