Sanitize all data coming from CMS with htmlentities.

bludit-themes / micro

Micro Theme for Bludit

1 stars 2 forks source link

Sanitize all data coming from CMS with htmlentities. #4

Open sergiotarxz opened 4 years ago

sergiotarxz commented 4 years ago

Since sometimes is difficult to say where a value given by the CMS comes from it may be worth to use htmlentities with all the PHP output to ensure XSS cannot happen.