Submit Search
Upload
preventing sqli and xss by ravi rajput in owasp meet ahmedabad
•
Download as PPTX, PDF
•
1 like
•
511 views
Ravi Rajput
Follow
Patching Sql injection and cross site scripting by ravi rajput
Read less
Read more
Technology
Report
Share
Report
Share
1 of 20
Download now
Recommended
Presentation on php string function part-2
Presentation on php string function part-2
Mysoftheaven (BD) Ltd.
Presentation on php string function part-1
Presentation on php string function part-1
Mysoftheaven (BD) Ltd.
Crafting Custom Interfaces with Sub::Exporter
Crafting Custom Interfaces with Sub::Exporter
Ricardo Signes
Intro to OAuth
Intro to OAuth
mfrost503
Java Unicode with Cool GUI Examples
Java Unicode with Cool GUI Examples
OXUS 20
Java Unicode with Live GUI Examples
Java Unicode with Live GUI Examples
Abdul Rahman Sherzad
My app is secure... I think
My app is secure... I think
Wim Godden
Codigos
Codigos
Manuel Valero
Recommended
Presentation on php string function part-2
Presentation on php string function part-2
Mysoftheaven (BD) Ltd.
Presentation on php string function part-1
Presentation on php string function part-1
Mysoftheaven (BD) Ltd.
Crafting Custom Interfaces with Sub::Exporter
Crafting Custom Interfaces with Sub::Exporter
Ricardo Signes
Intro to OAuth
Intro to OAuth
mfrost503
Java Unicode with Cool GUI Examples
Java Unicode with Cool GUI Examples
OXUS 20
Java Unicode with Live GUI Examples
Java Unicode with Live GUI Examples
Abdul Rahman Sherzad
My app is secure... I think
My app is secure... I think
Wim Godden
Codigos
Codigos
Manuel Valero
The promise of asynchronous php
The promise of asynchronous php
Wim Godden
Text in search queries with examples in Perl 6
Text in search queries with examples in Perl 6
Andrew Shitov
Learning Perl 6
Learning Perl 6
brian d foy
PHP Tutorial (funtion)
PHP Tutorial (funtion)
Tinnakorn Puttha
2014 database - course 2 - php
2014 database - course 2 - php
Hung-yu Lin
Php functions
Php functions
JIGAR MAKHIJA
Code obfuscation, php shells & more
Code obfuscation, php shells & more
Mattias Geniar
Learning Perl 6 (NPW 2007)
Learning Perl 6 (NPW 2007)
brian d foy
Perl6 grammars
Perl6 grammars
Andrew Shitov
Php web backdoor obfuscation
Php web backdoor obfuscation
Sandro Zaccarini
My app is secure... I think
My app is secure... I think
Wim Godden
Unfiltered Unveiled
Unfiltered Unveiled
Wilfred Springer
Class 8 - Database Programming
Class 8 - Database Programming
Ahmed Swilam
PHP and MySQL
PHP and MySQL
Sanketkumar Biswas
Paris js extensions
Paris js extensions
erwanl
Concern of Web Application Security
Concern of Web Application Security
Mahmud Ahsan
Advanced modulinos trial
Advanced modulinos trial
brian d foy
Electrify your code with PHP Generators
Electrify your code with PHP Generators
Mark Baker
Top 10 php classic traps php serbia
Top 10 php classic traps php serbia
Damien Seguy
Perl6 in-production
Perl6 in-production
Andrew Shitov
Python by ravi rajput hcon groups
Python by ravi rajput hcon groups
Ravi Rajput
Nmap not only a port scanner by ravi rajput comexpo security awareness meet
Nmap not only a port scanner by ravi rajput comexpo security awareness meet
Ravi Rajput
More Related Content
What's hot
The promise of asynchronous php
The promise of asynchronous php
Wim Godden
Text in search queries with examples in Perl 6
Text in search queries with examples in Perl 6
Andrew Shitov
Learning Perl 6
Learning Perl 6
brian d foy
PHP Tutorial (funtion)
PHP Tutorial (funtion)
Tinnakorn Puttha
2014 database - course 2 - php
2014 database - course 2 - php
Hung-yu Lin
Php functions
Php functions
JIGAR MAKHIJA
Code obfuscation, php shells & more
Code obfuscation, php shells & more
Mattias Geniar
Learning Perl 6 (NPW 2007)
Learning Perl 6 (NPW 2007)
brian d foy
Perl6 grammars
Perl6 grammars
Andrew Shitov
Php web backdoor obfuscation
Php web backdoor obfuscation
Sandro Zaccarini
My app is secure... I think
My app is secure... I think
Wim Godden
Unfiltered Unveiled
Unfiltered Unveiled
Wilfred Springer
Class 8 - Database Programming
Class 8 - Database Programming
Ahmed Swilam
PHP and MySQL
PHP and MySQL
Sanketkumar Biswas
Paris js extensions
Paris js extensions
erwanl
Concern of Web Application Security
Concern of Web Application Security
Mahmud Ahsan
Advanced modulinos trial
Advanced modulinos trial
brian d foy
Electrify your code with PHP Generators
Electrify your code with PHP Generators
Mark Baker
Top 10 php classic traps php serbia
Top 10 php classic traps php serbia
Damien Seguy
Perl6 in-production
Perl6 in-production
Andrew Shitov
What's hot
(20)
The promise of asynchronous php
The promise of asynchronous php
Text in search queries with examples in Perl 6
Text in search queries with examples in Perl 6
Learning Perl 6
Learning Perl 6
PHP Tutorial (funtion)
PHP Tutorial (funtion)
2014 database - course 2 - php
2014 database - course 2 - php
Php functions
Php functions
Code obfuscation, php shells & more
Code obfuscation, php shells & more
Learning Perl 6 (NPW 2007)
Learning Perl 6 (NPW 2007)
Perl6 grammars
Perl6 grammars
Php web backdoor obfuscation
Php web backdoor obfuscation
My app is secure... I think
My app is secure... I think
Unfiltered Unveiled
Unfiltered Unveiled
Class 8 - Database Programming
Class 8 - Database Programming
PHP and MySQL
PHP and MySQL
Paris js extensions
Paris js extensions
Concern of Web Application Security
Concern of Web Application Security
Advanced modulinos trial
Advanced modulinos trial
Electrify your code with PHP Generators
Electrify your code with PHP Generators
Top 10 php classic traps php serbia
Top 10 php classic traps php serbia
Perl6 in-production
Perl6 in-production
Viewers also liked
Python by ravi rajput hcon groups
Python by ravi rajput hcon groups
Ravi Rajput
Nmap not only a port scanner by ravi rajput comexpo security awareness meet
Nmap not only a port scanner by ravi rajput comexpo security awareness meet
Ravi Rajput
Use Promise, Future and some functional programing stuff without being a math...
Use Promise, Future and some functional programing stuff without being a math...
Quentin Adam
Hacking Ruby with Python
Hacking Ruby with Python
Taisuke Yamada
Middle man
Middle man
Sukant Khurana
Django Testing
Django Testing
ericholscher
Ghost in the Shell: UX for the future web
Ghost in the Shell: UX for the future web
Ryan Struhl
Reverse engineering by Ravi Rajput hcon groups meet
Reverse engineering by Ravi Rajput hcon groups meet
Ravi Rajput
iPhone forensics on iOS5
iPhone forensics on iOS5
Satish b
padding oracle attack
padding oracle attack
Satish b
Micro c lab3(ssd)
Micro c lab3(ssd)
Mashood
Code 8051
Code 8051
harihiet
Hacking y python: Hacking de redes con Python
Hacking y python: Hacking de redes con Python
Daniel Garcia (a.k.a cr0hn)
Web applications: How Penetration Tests can improve your Risk Assessment
Web applications: How Penetration Tests can improve your Risk Assessment
PECB
Pwning with XSS: from alert() to reverse shell: Defcon Banglore 2013
Pwning with XSS: from alert() to reverse shell: Defcon Banglore 2013
Ajin Abraham
Pentesting web applications
Pentesting web applications
Satish b
Web application penetration testing lab setup guide
Web application penetration testing lab setup guide
Sudhanshu Chauhan
Building a Dynamic Website Using Django
Building a Dynamic Website Using Django
Nathan Eror
Windows Registry Tips & Tricks
Windows Registry Tips & Tricks
Raghav Bisht
The Dirty Little Secrets They Didn’t Teach You In Pentesting Class
The Dirty Little Secrets They Didn’t Teach You In Pentesting Class
Chris Gates
Viewers also liked
(20)
Python by ravi rajput hcon groups
Python by ravi rajput hcon groups
Nmap not only a port scanner by ravi rajput comexpo security awareness meet
Nmap not only a port scanner by ravi rajput comexpo security awareness meet
Use Promise, Future and some functional programing stuff without being a math...
Use Promise, Future and some functional programing stuff without being a math...
Hacking Ruby with Python
Hacking Ruby with Python
Middle man
Middle man
Django Testing
Django Testing
Ghost in the Shell: UX for the future web
Ghost in the Shell: UX for the future web
Reverse engineering by Ravi Rajput hcon groups meet
Reverse engineering by Ravi Rajput hcon groups meet
iPhone forensics on iOS5
iPhone forensics on iOS5
padding oracle attack
padding oracle attack
Micro c lab3(ssd)
Micro c lab3(ssd)
Code 8051
Code 8051
Hacking y python: Hacking de redes con Python
Hacking y python: Hacking de redes con Python
Web applications: How Penetration Tests can improve your Risk Assessment
Web applications: How Penetration Tests can improve your Risk Assessment
Pwning with XSS: from alert() to reverse shell: Defcon Banglore 2013
Pwning with XSS: from alert() to reverse shell: Defcon Banglore 2013
Pentesting web applications
Pentesting web applications
Web application penetration testing lab setup guide
Web application penetration testing lab setup guide
Building a Dynamic Website Using Django
Building a Dynamic Website Using Django
Windows Registry Tips & Tricks
Windows Registry Tips & Tricks
The Dirty Little Secrets They Didn’t Teach You In Pentesting Class
The Dirty Little Secrets They Didn’t Teach You In Pentesting Class
Recently uploaded
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
Gabriella Davis
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
shyamraj55
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
Anna Loughnan Colquhoun
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Delhi Call girls
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Igalia
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
Michael W. Hawkins
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
BookNet Canada
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
ThousandEyes
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Puma Security, LLC
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
Paola De la Torre
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
Sinan KOZAK
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
Principled Technologies
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
hans926745
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
Maria Levchenko
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
Rafal Los
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAG
Sujit Pal
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Safe Software
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
ThousandEyes
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
2toLead Limited
Recently uploaded
(20)
A Domino Admins Adventures (Engage 2024)
A Domino Admins Adventures (Engage 2024)
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Automating Business Process via MuleSoft Composer | Bangalore MuleSoft Meetup...
Data Cloud, More than a CDP by Matt Robison
Data Cloud, More than a CDP by Matt Robison
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
Neo4j - How KGs are shaping the future of Generative AI at AWS Summit London ...
08448380779 Call Girls In Civil Lines Women Seeking Men
08448380779 Call Girls In Civil Lines Women Seeking Men
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
Raspberry Pi 5: Challenges and Solutions in Bringing up an OpenGL/Vulkan Driv...
GenCyber Cyber Security Day Presentation
GenCyber Cyber Security Day Presentation
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
Transcript: #StandardsGoals for 2024: What’s new for BISAC - Tech Forum 2024
How to Troubleshoot Apps for the Modern Connected Worker
How to Troubleshoot Apps for the Modern Connected Worker
Breaking the Kubernetes Kill Chain: Host Path Mount
Breaking the Kubernetes Kill Chain: Host Path Mount
Salesforce Community Group Quito, Salesforce 101
Salesforce Community Group Quito, Salesforce 101
Unblocking The Main Thread Solving ANRs and Frozen Frames
Unblocking The Main Thread Solving ANRs and Frozen Frames
Boost PC performance: How more available memory can improve productivity
Boost PC performance: How more available memory can improve productivity
[2024]Digital Global Overview Report 2024 Meltwater.pdf
[2024]Digital Global Overview Report 2024 Meltwater.pdf
Handwritten Text Recognition for manuscripts and early printed texts
Handwritten Text Recognition for manuscripts and early printed texts
The 7 Things I Know About Cyber Security After 25 Years | April 2024
The 7 Things I Know About Cyber Security After 25 Years | April 2024
Google AI Hackathon: LLM based Evaluator for RAG
Google AI Hackathon: LLM based Evaluator for RAG
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
From Event to Action: Accelerate Your Decision Making with Real-Time Automation
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Enhancing Worker Digital Experience: A Hands-on Workshop for Partners
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
Tech-Forward - Achieving Business Readiness For Copilot in Microsoft 365
preventing sqli and xss by ravi rajput in owasp meet ahmedabad
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
<?php $str = addslashes('What
does “hacking" mean?'); echo($str); ?> • Result : What does “hacking" mean? • It adds before “ ‘ ?>
13.
14.
15.
• Simply use
htmlentities()
16.
• Nope htmlentities() with ENT_QUOTES •
Var name = ‘<?php htmlentities($_GET[‘username’],ENT_QUOTES);?>’;
17.
• Php AntiXss
Download now