Love Fuel?
Donate
About
Forums
Discussions
Login
FuelPHP Forums
Ask your question about FuelPHP in the appropriate forum, or help others by answering their questions.
kenjis
Discussions
20
Comments
78
Activity
Sentry - Authentication Package
Yes, it looks an Auth package with real world functionality. Thank you. I'll check the code, too.
Comment by
kenjis
December 2011
permalink
Security question
Thank you for you reply. My example is just a concept. The essence is that if a HTML coder uses single quotes it has risks. The below might be not rediculous. HTML:
Comment by
kenjis
July 2011
permalink
Security question
ENT_QUOTES is a bit safer. PoC HTML: Input: 300' style='xss:[removed]bad_javascript_here) Output: And I want add my questions: why using htmlentities instead of htmlspecialchars? why double_encode is false?
Comment by
kenjis
July 2011
permalink
Howdy, Stranger!
It looks like you're new here. If you want to get involved, click one of these buttons!
Sign In
Apply for Membership
About
Username
kenjis
Joined
November 2011
Visits
132
Last Active
July 2015
Roles
Member
Donate
