php - How can I filter metacharacters from user input in xss attack? -


on site on admin login page if this

http://www.domain.com/admin/index.php/%22onclick=document.location="http://www.google.com"> 

and click somewhere page redirects. read need filter metacharacters, after hours of googling still can't find out how can stop this. above see isn't doing get or post. how can block this?


Comments

Popular posts from this blog

python - Scipy curvefit RuntimeError:Optimal parameters not found: Number of calls to function has reached maxfev = 1000 -

java - where to store the user credentials in an enterprise application(EAI)? -

openxml - Programmatically format a date in an excel sheet using Office Open Xml SDK -