Escape traffic logs etc

0x416c616e / security_dashboard

A simple web server security dashboard written in PHP. Intended for use on a LAMP stack server.

1 stars 0 forks source link

Escape traffic logs etc #39

Open 0x416c616e opened 4 years ago

0x416c616e commented 4 years ago

On the dashboard page, there will be the ability to run scans, view resource usage graphs, and view logs, including Apache traffic logs. This needs to be escaped.

Here is a tutorial for how to escape stuff in PHP: https://www.youtube.com/watch?v=pc0V9hJpE54

0x416c616e commented 4 years ago

If stuff isn't properly escaped, it could result in XSS