News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

PHPMaster.com:
PHP Security Cross-Site Scripting Attacks (XSS)
May 01, 2012 @ 11:59:28

PHPMaster.com has a new tutorial posted today (by George Fekete) about preventing cross-site scripting attacks in your PHP-based applications.

Unfortunately, cross-site scripting attacks occurs mostly, because developers are failing to deliver secure code. Every PHP programmer has the responsibility to understand how attacks can be carried out against their PHP scripts to exploit possible security vulnerabilities. Reading this article, you'll find out more about cross-site scripting attacks and how to prevent them in your code.

Included in the tutorial is an example with a simple form and definitions of different types of XSS attacks - reflected XSS, persistent XSS and three ways to prevent them: data filtering, output filtering and data validation. He also links to a few "cheatsheets" to help even more (including this guide and a Zend Framework set of XSS test data.

0 comments voice your opinion now!
tutorial security xss filter validate data output cheatsheet


blog comments powered by Disqus

Similar Posts

DZone.com: MySQL PHP search: four-part video tutorial series

PHPEveryDay.com: New Tutorials Posted (WDDX in PHP)

Chance Garcia's Blog: TEKX Tutorials - Best Practices & Being the Bad Guy

ParanoidFerret.com: Flex & PHP Tutorial - Transmitting data using JSON

RoofTopSolutions.nl: Caching in PHP using the filesystem, APC, and Memecached


Community Events





Don't see your event here?
Let us know!


security library language framework podcast composer release series update laravel symfony opinion tool interview introduction community install version voicesoftheelephpant package

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework