How do I protect against cross-site scripting?

Posted by shahinkian on Stack Overflow See other posts from Stack Overflow or by shahinkian
Published on 2010-05-07T18:43:16Z Indexed on 2010/05/07 18:48 UTC
Read the original article Hit count: 350

I am using php, mysql with smarty and I places where users can put comments and etc. I've already escaped characters before inserting into database for SQL Injection. What else do I need to do?

© Stack Overflow or respective owner

Related posts about cross-site-scripting

Related posts about sql-injection