To: WhiskeyX; John Robinson
If you were a computer developer like ME, you would have known that JohnRob's problem with this website is a failure to encode the HTML (which is also a very significant security failure, BTW!!!! If something funky sneaks into the DB, the output could contain a link- or img-inject, and a good hacker could harvest... oooo I dunno, stuff like banking session cookies! XSS or XSRF, here we come!!!)
My friend John.... just get a quick HTML encode in there just before you paint the HTML and all the quote problems (and the security issue I mentioned) will go away.
77 posted on
11/24/2015 4:06:54 PM PST by
Lazamataz
( If they try firearm confiscation or gun registration, I go ballistic.)
To: Jim Robinson; BuckeyeTexan
Hey bro. Backtrack, and tell John this. It’s a quick solve of the quote thing, also prevents a link or img-inject hack.
The FedGov didn’t put me through Defensive Programming and Threat Modeling courses for nuttin’. :)
Buckeye. Tell ‘im. :)
81 posted on
11/24/2015 4:10:59 PM PST by
Lazamataz
( If they try firearm confiscation or gun registration, I go ballistic.)
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson