Welcome Guest, Not a member yet? Register   Sign In
How do I stop Stored XSS

Hi All,
If you enter "<script>alert('xss');</script>" in to your form and save, this script get triggered on the page load. 
What is the best way to stop these Stored XSS scripts globally?

I'm looking for a global option where I don't have to worry about printing any stored data.

You can you entity to cast the data from the database.

Use html purifier.
What did you Try? What did you Get? What did you Expect?

Joined CodeIgniter Community 2009.  ( Skype: insitfx )

Theme © iAndrew 2016 - Forum software by © MyBB