How to prevent cross-site scripting (XSS)

You should HTML escape any input before outputting it back to the user.

留言

這個網誌中的熱門文章

10 Tips for Proper Application Logging

java.lang.NoClassDefFoundError: org/apache/xerces/jaxp/datatype/XMLGregorianCalendarImpl$Parser

MS SQL Server: EXECUTE permission denied on xp_sqljdbc_xa_init_ex