Web safety with AJAX and PHP 5
Manipulation of parameters, Cross Site Scripting, SQL Injection, Session hacking - there are many ways to attack a websites integrity for evil purposes. And it is note easy to imagine every way hackers are trying to manipulate your web code. This application makes use of several techniques to prevent your web application from harmful code (some of them refer to the excellent book "PHP-Sicherheit", published by dpunkt.verlag, 2007). Among other features you'll find data type control, control of allowed variables in URI strings, several session and history controls, control of drowdown menus, control of form names and form action URI and controls of forbidden inserts in form elements (fully automated), a generator for safe passwords, and a consistent use of file_exists(). Besides the PHP 5 functions __autoload for classes and try and catch a special feature is the safeHTML parser (http://pixel-apes.com/sa fehtml), which helps to remove not desired attributes and tags effective.