Support the ongoing development of Laravel.io →
Authentication Security
Last updated 2 years ago.
0

Eloquent automatically prevent SQL Injection so you dont need it. For XSS prevent use e() function which escape string.

$user->bio = e(Input::get("bio"));
Last updated 2 years ago.
0

Sign in to participate in this thread!

Eventy

Your banner here too?

devmark devmark Joined 17 May 2014

Moderators

We'd like to thank these amazing companies for supporting us

Your logo here?

Laravel.io

The Laravel portal for problem solving, knowledge sharing and community building.

© 2024 Laravel.io - All rights reserved.