Hi,
Do these fall under the encoding category ?
urlencode()
rawurlencode()
int()
int_val()
Before outputting user inputted links on your pages, you use these functions, I know:
urlencode()
rawurlencode()
int()
But are there any other functions you make use of during echoing user submitted urls/links ?
I am not talking about user submitted html code cos I know to echo user submitted html you might need to use following so your page’s html are not broken due to bad code or malicious code submitted by your users:
htmlentities()
htmlspecialchars.
But I am talking about echoing on your page, user submitted pure url or links.
What other functions should I be looking into apart from these that deal with securely echoing user submitted urls & links on your pages ?