Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums CodeIgniter 4 CodeIgniter 4 Support XSS_filtering
XSS_filtering
  • Offline kilishan
    CI Project Lead
  • *******
  • Posts: 1,461
    Threads: 90
    Joined: Oct 2014
    Reputation: 120
#2
10-18-2018, 09:23 PM

I think you're in the wrong forum. CI4 doesn't have xss_clean method. Instead it provides the esc() method to escape data in views.

But what it means is that you don't escape data when you get it from the user. Different contexts need different types of escaping. For example, escaping for safety within a database is different than for when it's viewed on a web page. Instead, escape it when you need to use it so you can choose the proper way to handle it.
Support Development •  CodeIgniter 4 Foundations • Practical CodeIgniter 3  • CodeIgniter Tutorials
Reply


Messages In This Thread
XSS_filtering - by emilio - 10-18-2018, 02:19 PM
RE: XSS_filtering - by kilishan - 10-18-2018, 09:23 PM
RE: XSS_filtering - by emilio - 10-19-2018, 05:31 AM



Theme © iAndrew 2016 - Forum software by © MyBB