• PHP Form Hijacking

      0 comments
      28th Feb 10
      Bart

    What are the steps that you can take to prevent form hijacking in PHP?

    - Make register_globals to off to prevent Form Injection with malicious data.

    - Set Error_reporting to E_ALL so that all variables will be intialized before using them.

    - Practice of using htmlentities(), strip_tags(), utf8_decode() and addslashes()  for filtering malicious data in php

    - Make practice of using mysql_escape_string() in mysql.

      Advanced level, PHP Questions
      , ,