Beefy Boxes and Bandwidth Generously Provided by pair Networks
Do you know where your variables are?
 
PerlMonks  

Re^2: HTML::ENTITIES for URL encoding

by aakashmgupta (Initiate)
on Mar 05, 2015 at 03:34 UTC ( #1118825=note: print w/replies, xml ) Need Help??


in reply to Re: HTML::ENTITIES for URL encoding
in thread HTML::ENTITIES for URL encoding

when user hits my url on browser like this
http://example.com/>"<script>alert(1212)</script>
this triggers the javascript i want to escape/remove/replace the special characters so that i will not triggers javascript
and second thing
"if you need to filter to just parameter names containing special chars filter using "next"."
i didn't get this can you please explain?

Replies are listed 'Best First'.
Re^3: HTML::ENTITIES for URL encoding
by cheako (Beadle) on Mar 05, 2015 at 04:00 UTC

    >"<script>alert(1212)< <--- In all likely hood this directory is not found, no Perl coding is necessary. Your web server will fail with a 404 file not found long before you get to run any Perl code.

    We don't fix things using JavaScript here at the Monastery.
    Read: next 7th line from the top is a great example.

    And again it should be: http://example.com/"><script>alert(1212)</script> This is the solution you are looking for, nothing to do in either Perl or JS.
Re^3: HTML::ENTITIES for URL encoding
by cheako (Beadle) on Mar 05, 2015 at 04:02 UTC
    Have you tried using regular HTTP parameters? http://example.com/?alert=1212">

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://1118825]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others wandering the Monastery: (5)
As of 2018-12-16 03:04 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?
    How many stories does it take before you've heard them all?







    Results (70 votes). Check out past polls.

    Notices?