akohan
asked on
Regular expression to checking ...?
Hello group,
How can I avoid users from entering some specific characters in Form entries? characters such as & ^ % # @ and so on?
I don't know that much about Regular Expression but will appreciate it if you pass me some links to learn how to use it in PHP.
Regards.
How can I avoid users from entering some specific characters in Form entries? characters such as & ^ % # @ and so on?
I don't know that much about Regular Expression but will appreciate it if you pass me some links to learn how to use it in PHP.
Regards.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications which allow code injection by malicious web users into the web pages viewed by other users. Examples of such code include HTML code and client-side scripts.
http://en.wikipedia.org/wiki/Cross-site_scripting
For books I suggest;
http://www.amazon.com/Cross-Site-Scripting-Attacks-Exploits/dp/1597491543/ref=pd_bbs_sr_1/104-1412087-4929535?ie=UTF8&s=books&qid=1177355137&sr=1-1
This book was written by industry experts and is the best reference.
He also has a blog which I also read; www.jeremiahgrossman.blogspot.com/
http://en.wikipedia.org/wiki/Cross-site_scripting
For books I suggest;
http://www.amazon.com/Cross-Site-Scripting-Attacks-Exploits/dp/1597491543/ref=pd_bbs_sr_1/104-1412087-4929535?ie=UTF8&s=books&qid=1177355137&sr=1-1
This book was written by industry experts and is the best reference.
He also has a blog which I also read; www.jeremiahgrossman.blogspot.com/
ASKER
Wow! thank you so much for the details.
Regards.
ASKER
Hi CurtinProp,
You did point to something I always think of. As matter of fact, I've started PHP just few months ago and not sure what XSS attaks are. Would you please give me direction toward this concept? Any online resource or book would be great.
Thanks.