[PHP] Dealing With User Entering a Script
- Date: Fri, 22 Jul 2016 14:19:21 -0400
- From: Stephen <stephen-d@xxxxxxxxxx>
- Subject: [PHP] Dealing With User Entering a Script
I dug back to see where I git the idea of using htmlentities() on user input.
This came from the book Modern PHP and deals with a user entering in a text box something like:
<script>window.location.href='http://example.com';</script> Is there a better way of dealing with this?For context, I am creating a user registration field and there is a textarea field for their bio.
Thank you! -- Stephen -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php