FIX it:
for fix XSS Vulnerability use htmlentities:
in line 16 Remplace:
<body>
<span class="alerte">Search result :</span> <strong><?php echo $_POST['Vulnerability']; ?></strong>
</body>
By:
<body>
<span class="alerte">Search result :</span> <strong><?php
if(isset($_POST['Vulnerability'])) { echo htmlentities($_POST['Vulnerability']); } ?></strong>
</body>
use htmlspecialchars() function in PHP ;)
other function:
htmlentities() quotes
strip_tags()
...
0 komentar:
Posting Komentar