News Feed

News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way
Use the PHP Filter Extension to Validate User Data
November 15, 2010 @ 09:35:30

On there's a recent tutorial posted abut using the filter extension (now a part of the PHP core since 5.2) to filter and validate incoming user data.

With so much potential for distraction, it's no wonder that developers continue to fall victim to the very same security gaffes that have afflicted the community for well over a decade. Notably, failure to properly validate user input remains the single most serious security issue, with several of the Open Web Application Security Project's top ten security risks originating directly from this oversight.

He shows how much of an issue improperly escaped data can cause and how to validate a few different kinds of data like alphanumeric string and integers. He also mentions using prepared statements or the Zend_Filter component of the Zend Framework.

1 comment voice your opinion now!
filter user input tutorial zendfulter preparedstatement extension

blog comments powered by Disqus

Similar Posts

DevShed: Reading, Writing and Creating Files in PHP

The Shadow Fox Network: Create Dynamic URLs With Mod_Rewrite and PHP Functions

Kevin Schroeder's Blog: Authentication Using Zend_Amf

DevShed: Paginating Result Sets for a Search Engine Built with MySQL and PHP 5 Create your own MVC

Community Events

Don't see your event here?
Let us know!

code framework release testing unittest laravel community wordpress install interview podcast threedevsandamaybe introduction language developer opinion list series refactor experience

All content copyright, 2014 :: - Powered by the Solar PHP Framework