Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived General Discussion [SOLVED] Allowing all URI characters
[SOLVED] Allowing all URI characters
  • El Forum
    Guest
  •  
#7
01-17-2010, 03:10 AM

[eluser]Jamie Rumbelow[/eluser]
...neither is it a good idea to allow every single character pass through in your URL. I could hack your website in so many different ways now I know that any character is passed through, and (hypothetically) could track your username across the web to find out what site it is and then hack it.

Security's important. Limit the character set to a certain few characters. Even if you are xss_clean()ing it it's not impossible to bypass.

Jamie


Messages In This Thread
[SOLVED] Allowing all URI characters - by El Forum - 01-15-2010, 02:44 PM
[SOLVED] Allowing all URI characters - by El Forum - 01-15-2010, 02:55 PM
[SOLVED] Allowing all URI characters - by El Forum - 01-15-2010, 02:58 PM
[SOLVED] Allowing all URI characters - by El Forum - 01-16-2010, 10:38 PM
[SOLVED] Allowing all URI characters - by El Forum - 01-16-2010, 10:58 PM
[SOLVED] Allowing all URI characters - by El Forum - 01-17-2010, 01:38 AM
[SOLVED] Allowing all URI characters - by El Forum - 01-17-2010, 03:10 AM
[SOLVED] Allowing all URI characters - by El Forum - 04-29-2010, 06:46 AM



Theme © iAndrew 2016 - Forum software by © MyBB