PHP: Difference between revisions
Marked this version for translation |
No edit summary |
||
| Line 31: | Line 31: | ||
<!--T:7--> | <!--T:7--> | ||
Note that if you're rendering user input in this way, you should wrap it in the <code>[https://www.php.net/manual/en/function.htmlspecialchars.php htmlspecialchars]</code> function, lest you become vulnerable to an [[wikipedia:Cross-site_scripting|XSS (Cross-site scripting)]] attack in which a nasty fellow inputs [[:Category:Evil Pages|evil]] HTML to make your site go [[:Category:Bad pages|bad]] and rotten like a hard-boiled egg. | Note that if you're rendering user input in this way, you should wrap it in the <code>[https://www.php.net/manual/en/function.htmlspecialchars.php htmlspecialchars]</code> function, lest you become vulnerable to an [[wikipedia:Cross-site_scripting|XSS (Cross-site scripting)]] attack in which a nasty fellow inputs [[:Category:Evil Pages|evil]] HTML to make your site go [[:Category:Bad pages|bad]] and rotten like a hard-boiled egg. | ||
[[Category:Pages with some amount of information in them]] | |||
<!--T:8--> | |||
== I’m PHP == | |||
I’m dynamite | |||
</translate> | |||
[[Category:Pages with some amount of information in them]] | |||