Browsed by
Month: July 2019

Filtering user input in web applications: the basics

Filtering user input in web applications: the basics

SQL Injection. Cross-Site Scripting. These are just two of web application security flaws that can be prevented by effectively filtering user input. Web developers can filter user-supplied input in two ways – either by utilizing white-list or black-list input validation. Each method of input sanitization has their own pros and cons, so I will go through each of them individually. Black-list input sanitization Black-list input validation is one of the most common ways user-supplied input can be validated. The way…

Read More Read More