I know there is htmlspecialentities() that changes "<" to (I forget, its like &31; or something), but is that the best and most secure way?
For further actions, you may consider blocking this person and/or reporting abuse
I know there is htmlspecialentities() that changes "<" to (I forget, its like &31; or something), but is that the best and most secure way?
For further actions, you may consider blocking this person and/or reporting abuse
Navneet Verma -
Nacho Colomina Torregrosa -
Eprofos -
MD ARIFUL HAQUE -
Top comments (3)
There was some ways to sanitize data with many purpose. You can sanitize the "<" for preventing XSS, escaping some characters like "=" or " " " for preventing SQL Injection. They all all secure, but it will be great if you do it multiple times (like not just doing one of them, but all).
βlike not just doing one of them, but allβ.
But all of what? Are there additional parameters I should be using, or additional/different functions?
All of the method. For more specific example, don't only run the method for sanitize your data for preventing XSS, you also need to sanitize your data for preventing SQL Injection. This will give an extra protection.