How to prevent form hijacking in PHP?

shophia

Member
Registered
Joined
Mar 25, 2013
Messages
23
Points
0
1. Create register_globals to off to avert Form Injection with malicious data.

2. Make Error_reporting to E_ALL so that all variables will be initialized earlier than using them.

3. Make perform of using htmlentities(), strip_tags(), utf8_decode() and addslashes() for filtering malicious data in php.

4. SQL injection attacks by using mysql_escape_string().

5. User Input Sanitization-Never belief web user submitted data. Follow best client side data validation performance with normal terms before submitting data to the supply.

6. Form Submission Key Validation: A singleton technique can be used to create a session form key & validating form being submitted for the equal value alongside hidden form key parameters.
 

Marc0

Well-known member
Registered
Joined
Jun 6, 2012
Messages
890
Points
28
Good Tips, Sophia, your explanations about how to prevent form hijacking in PHP are very detail, and easy to understand. Thank you.
 

md_lee

New member
Registered
Joined
Apr 24, 2013
Messages
3
Points
0
I would like to recommend encrypting data with a strong generation sequence wherever possible, in order to increase security. Also, in order to make the data secure from naive brute-force attackers, specific techniques can be put in place.
 
Older Threads
Replies
0
Views
2,687
Replies
0
Views
2,294
Replies
3
Views
2,366
Replies
0
Views
4,764
Replies
2
Views
2,770
Newer Threads
Replies
0
Views
2,607
Replies
5
Views
4,938
Replies
3
Views
2,969
Latest Threads

Latest Hosting OffersNew Reviews

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Top