ID: 40203 Updated by: [EMAIL PROTECTED] Reported By: naplanetu at gmail dot com -Status: Open +Status: Closed Bug Type: Documentation problem PHP Version: Irrelevant -Assigned To: +Assigned To: philip New Comment:
This bug has been fixed in the documentation's XML sources. Since the online and downloadable versions of the documentation need some time to get updated, we would like to ask you to be a bit patient. Thank you for the report, and for helping us make our documentation better. Previous Comments: ------------------------------------------------------------------------ [2007-01-23 05:06:10] naplanetu at gmail dot com Description: ------------ http://www.php.net/manual/en/ref.session.php#session.idpassing Example 3. Counting the number of hits of a single user ... <p> To continue, <a href="nextpage.php?<?php echo strip_tags(SID); ?>">click here</a>. </p> The strip_tags() is used when printing the SID in order to prevent XSS related attacks. It's incorrect to use strip_tags() to prevent XSS. You should use htmlspecialchars(). ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=40203&edit=1
