ogamespec
commented
2 months ago First you need to collect statistics about which pages and how much they interact with the user. The best way is to collect all parameters for GET/POST requests in a table. Then we will think further.
Посмотреть все места, где может пролезть XSS и использовать там
htmlspecialchars.https://www.php.net/manual/en/function.htmlspecialchars.php