How to prevent form hijacking in PHP?

shophia

Member
Registered
Joined
Mar 25, 2013
Messages
23
Points
0
1. Create register_globals to off to avert Form Injection with malicious data.

2. Make Error_reporting to E_ALL so that all variables will be initialized earlier than using them.

3. Make perform of using htmlentities(), strip_tags(), utf8_decode() and addslashes() for filtering malicious data in php.

4. SQL injection attacks by using mysql_escape_string().

5. User Input Sanitization-Never belief web user submitted data. Follow best client side data validation performance with normal terms before submitting data to the supply.

6. Form Submission Key Validation: A singleton technique can be used to create a session form key & validating form being submitted for the equal value alongside hidden form key parameters.
 

Marc0

Well-known member
Registered
Joined
Jun 6, 2012
Messages
890
Points
28
Good Tips, Sophia, your explanations about how to prevent form hijacking in PHP are very detail, and easy to understand. Thank you.
 

md_lee

New member
Registered
Joined
Apr 24, 2013
Messages
3
Points
0
I would like to recommend encrypting data with a strong generation sequence wherever possible, in order to increase security. Also, in order to make the data secure from naive brute-force attackers, specific techniques can be put in place.
 
Older Threads
Replies
0
Views
2,508
Replies
0
Views
2,186
Replies
3
Views
2,208
Replies
0
Views
4,554
Replies
2
Views
2,637
Newer Threads
Replies
0
Views
2,376
Replies
5
Views
4,763
Replies
3
Views
2,772
Latest Threads
Replies
1
Views
40
Replies
0
Views
35
Replies
0
Views
55
Recommended Threads

Latest Hosting OffersNew Reviews

Sponsors

Tag Cloud

You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.

Top