Welcome Guest, Not a member yet? Register   Sign In
xss flashdata class

(05-03-2020, 02:08 AM)jreklund Wrote: You should use html_escape() or xss_clean() when you print strings that are not XSS safe. Personally I use html_escape() as I don't want anything to have the slightest chance on slipping thru.

PHP Code:
<?php echo html_escape($this>session->flashdata('error')); ?>

It's deprecated from input validation, as you should filter your data. Do you only want numbers? Check that it's not a letter etc.

Thanks for your quick help and response!!

Messages In This Thread
xss flashdata class - by az1409 - 05-02-2020, 09:53 PM
RE: xss flashdata class - by jreklund - 05-03-2020, 02:08 AM
RE: xss flashdata class - by az1409 - 05-03-2020, 02:12 AM

Theme © iAndrew 2016 - Forum software by © MyBB