search

jmohler1970 / BS-4-CF

Bootstrap tags for Adobe ColdFusion
MIT License
2 stars 2 forks source link

Make sure all tags sanitize #46

Closed jmohler1970 closed 8 years ago

jmohler1970 commented 8 years ago

Per http://stackoverflow.com/tags/sanitization/info

  1. Input validation (applies)
  2. Selective input inclusion/exclusion (applies)
  3. Escaping dangerous characters. (applies)
  4. Input encoding (applies)
  5. Output encoding (applies)
  6. Other coding practices which are not prone to code injection vulnerabilities, such as "parameterized SQL queries" (also known as "prepared statements" and sometimes "bound variables" or "bound values"). (NA)
  7. Modular shell disassociation from kernel (NA)
jmohler1970 commented 8 years ago

Here is a better list

https://www.owasp.org/index.php/XSS_%28Cross_Site_Scripting%29_Prevention_Cheat_Sheet#XSS_Prevention_Rules_Summary

jmohler1970 commented 8 years ago

added