Verhoeckx wrote:
Hi Itips3727,
Thanks for sending me the above script but I have the idea that the script is not safe because it doesn’t test for Cross Site Scripting (XSS).
Verhoeckx
Hi @Verhoeckx,
Try adding XSS protection into your .htaccess file.
For example:
## Reflected XSS protection
<IfModule mod_headers.c>
Header set X-XSS-Protection "1; mode=block"
</IfModule>
Hope that works for you. 😉
