Tag: ASVS 6.9

• OWASP A2 – Cross-Site Scripting (XSS) with PHP Part 3

  Last week we finished up input validation, which represents one half of the solution towards preventing XSS. This week we will cover the other half; output encoding. Output encoding protects the application in the event that malicious script data somehow makes its way into the database or a form parameter. It is a fail safe…

  Josh Berry

  September 16, 2011

  OWASP 2010 A2, PHP Security

  ASVS 6.1, ASVS 6.10, ASVS 6.2, ASVS 6.3, ASVS 6.9, OWASP 2010 A2 – Cross-Site Scripting (XSS), PHP