PEAK XOOPS - anti-XSS system (1)

| PHP | Site News | XOOPS |

PHP

PHP : anti-XSS system (1)

Poster : GIJOE on 2006-06-20 13:16:00 (13335 reads)

I've found much better anti-XSS system like "Big umbrella".

1. check doubtful request (eg. "<script") in the top of application
2. if such requests exist, push an output filter by ob_start()
3. else no ob_start() are pushed (=performance safe)
4. check registered doubtful-requests exist in the html for outputting
5. if exist, die().

I'll write the code in (2)

0 comments

Big Umbrella Anti-SQL-Injection(1) (2009-01-07 04:37:49)
anti-XSS system (4) (2006-06-25 18:20:31)
anti-XSS system (3) (2006-06-22 12:46:44)
anti-XSS system (2) (2006-06-21 15:27:40)

Comments list

View more comments...

Lost Password?

Register now!