[PHP] Securing XSS & SQL Injections

[brsy]

Here is a very noob-friendly tutorial I found that may help a lot of people know exactly what an exploit is, and how to secure 'em.

You must be registered for see links

 

[RastaLulz]

How to stop XSS:

• Use PHP's htmlentities() on all (or most) data submitted by the user when displaying it on your site.

How to stop SQL injections:

• Use MySQLi's bind_param() function.

 

[Xenous]

or better yet he can not post a useless thread when theres onethe same below it

 

[brsy]

or better yet he can not post a useless thread when theres onethe same below it

Why be such a troll? This is also informing the readers of what an SQL/XSS injection really is... The other thread only provides a piece of code that can prevent it. For all some people know, they're preventing something they have no knowledge about. So please, hush up and read what I wrote next time.