PHP Interview Questions and answers» sql injections archives – interview questions and answers http://www.phpinterviewquestions.com Prepare for your next php based interview with high confidence Mon, 26 Sep 2011 08:37:10 +0000 http://wordpress.org/?v=2.9.2 en hourly 1 PHP Form Hijacking http://www.phpinterviewquestions.com/php-interview-questions/php-form-hijacking/ http://www.phpinterviewquestions.com/php-interview-questions/php-form-hijacking/#comments Sun, 28 Feb 2010 17:44:42 +0000 Bart http://www.phpinterviewquestions.com/?p=54 What are the steps that you can take to prevent form hijacking in PHP?

- Make register_globals to off to prevent Form Injection with malicious data.

- Set Error_reporting to E_ALL so that all variables will be intialized before using them.

- Practice of using htmlentities(), strip_tags(), utf8_decode() and addslashes()  for filtering malicious data in php

- Make practice of using mysql_escape_string() in mysql.

]]> http://www.phpinterviewquestions.com/php-interview-questions/php-form-hijacking/feed/ 0