How to prevent form hijacking in PHP?

shophia

Member
Registered
Joined
Mar 25, 2013
Messages
23
Points
0
1. Create register_globals to off to avert Form Injection with malicious data.

2. Make Error_reporting to E_ALL so that all variables will be initialized earlier than using them.

3. Make perform of using htmlentities(), strip_tags(), utf8_decode() and addslashes() for filtering malicious data in php.

4. SQL injection attacks by using mysql_escape_string().

5. User Input Sanitization-Never belief web user submitted data. Follow best client side data validation performance with normal terms before submitting data to the supply.

6. Form Submission Key Validation: A singleton technique can be used to create a session form key & validating form being submitted for the equal value alongside hidden form key parameters.
 

Marc0

Well-known member
Registered
Joined
Jun 6, 2012
Messages
890
Points
28
Good Tips, Sophia, your explanations about how to prevent form hijacking in PHP are very detail, and easy to understand. Thank you.
 

md_lee

New member
Registered
Joined
Apr 24, 2013
Messages
3
Points
0
I would like to recommend encrypting data with a strong generation sequence wherever possible, in order to increase security. Also, in order to make the data secure from naive brute-force attackers, specific techniques can be put in place.
 
Older Threads
Replies
0
Views
2,717
Replies
0
Views
2,314
Replies
3
Views
2,404
Replies
0
Views
4,794
Replies
2
Views
2,790
Newer Threads
Replies
0
Views
2,630
Replies
5
Views
4,989
Replies
3
Views
2,994
Latest Threads
Replies
1
Views
26
Replies
0
Views
188
Replies
1
Views
40
Replies
2
Views
83
Recommended Threads
Replies
1
Views
11,376
Replies
0
Views
2,311
Replies
14
Views
5,499
Replies
0
Views
2,624

Latest postsNew threads

Latest Hosting OffersNew Reviews

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Top