From e334c472fb4be44feec3a73402fc4a2b062cbfc0 Mon Sep 17 00:00:00 2001
From: admin GET data is simply disallowed by Code Igniter since the system utilizes URI segments rather than traditional URL query strings (unless
-you have the query string option enabled in your config file). The global GET
+you have the query string option enabled in your config file). The global GET
array is unset by the Input class during system initialization.GET, POST, and COOKIE Data
Register_globals
@@ -100,7 +100,7 @@ retrieving data from your database.
Before accepting any data into your application, whether it be POST data from a form submission, COOKIE data, URI data, +
Before accepting any data into your application, whether it be POST data from a form submission, COOKIE data, URI data, XML-RPC data, or even data from the SERVER array, you are encouraged to practice this three step approach:
Code Igniter comes with a Cross Site Scripting filter. This filter looks for commonly +
Code Igniter comes with a Cross Site Scripting filter. This filter looks for commonly used techniques to embed malicious Javascript into your data, or other types of code that attempt to hijack cookies -or do other malicious things. The XSS Filter is described here. +or do other malicious things. The XSS Filter is described here.
Code Igniter has a Validation Class that assists you in validating, filtering, and prepping +
Code Igniter has a Validation Class that assists you in validating, filtering, and prepping your data.