[TYPO3-english] SQL Injection & Cross-site scripting
Peter Kühnlein
peter at function2form.net
Wed Nov 16 15:22:45 CET 2011
Am 16.11.2011 15:03, schrieb Iban Cardona i Subiela:
> Hello,
>
> Do you know what is the best way (PHP or TYPO3) to prevent SQL Injection
> and Cross-site scripting attacks in TYPO3?
>
> Thank you so much!
Since there are numerous ways to perform an sql-injection, you have to
protect your installation multiply. One thing might be the following
http://www.t3node.com/blog/prevent-sql-injection-in-typoscript-when-using-strings-from-get-parameters/
HTH
Peter
--
http://www.function2form.net
http://www.peter-kuehnlein.net
"With the passing of time, the criminal will forget the reason for
his crime; it is best to execute him on the spot."
(Hagakure)
More information about the TYPO3-english
mailing list