You are in: home / community
About Me:
Sorry for my E ;) Chris, I didnt want to to offend anyone so I'm sorry for my "learn PHP" sentence :) it's just misunderstanding... :) I'm really concern about this RSS example and I've tried to do something to make this hack useless... I think the KEY in this example is htmlentities 3rd parameter -> [, string $charset]. If I'm wrong just correct me. Thanks! Seeyaa!Posted in /blog/2005/dec/google-xss-example. Tue, 29 May 2007 at 16:03:05: Link
Sorry for my E ;)
Chris, I didnt want to to offend anyone so I'm sorry for my "learn PHP" sentence :) it's just misunderstanding... :)
I'm really concern about this RSS example and I've tried to do something to make this hack useless...
I think the KEY in this example is htmlentities 3rd parameter -> [, string $charset]. If I'm wrong just correct me.
Thanks! Seeyaa!
Posted in /blog/2005/dec/google-xss-example.
Tue, 29 May 2007 at 16:03:05: Link
Replace last line with this one: echo htmlentities($string, ENT_QUOTES); and this hack will not work.... learn PHP guys ;))Posted in /blog/2005/dec/google-xss-example. Mon, 28 May 2007 at 18:06:05: Link
Replace last line with this one:
echo htmlentities($string, ENT_QUOTES);
and this hack will not work....
learn PHP guys ;))
Mon, 28 May 2007 at 18:06:05: Link
tereska.myopenid.com
Tereska's Profile Tereska's Profile
Last 10 Comments
1
2