News Feed
Jobs Feed
Sections




News Archive
PHPBuilder.com:
Use the PHP Filter Extension to Validate User Data
by Chris Cornutt November 15, 2010 @ 09:35:30

On PHPBuilder.com there's a recent tutorial posted abut using the filter extension (now a part of the PHP core since 5.2) to filter and validate incoming user data.

With so much potential for distraction, it's no wonder that developers continue to fall victim to the very same security gaffes that have afflicted the community for well over a decade. Notably, failure to properly validate user input remains the single most serious security issue, with several of the Open Web Application Security Project's top ten security risks originating directly from this oversight.

He shows how much of an issue improperly escaped data can cause and how to validate a few different kinds of data like alphanumeric string and integers. He also mentions using prepared statements or the Zend_Filter component of the Zend Framework.

1 comment voice your opinion now!
filter user input tutorial zendfulter preparedstatement extension


blog comments powered by Disqus

Similar Posts

Travis Swicegood: Fluent-API, here I come!

MongoDB Blog: MongoDB for the PHP Mind, Part 1

phpaddiction: Url Routing with PHP - Part Two

Community News: Symfony Framework Makes Some Updates (v.0.6.2 and Content)

PHPBuilder.com: Reading RSS feeds in PHP: Part 2


 Community Events











Don't see your event here?
Let us know!

community testing introduction interview development database zendframework2 composer conference functional language object example opinion tool code framework release series podcast

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework