Are you ready?
Trustmaster |
|
---|---|
# donP : But if anybody tries disabling Javascript to edit directly HTML code NO TEXTAREA AT ALL would appear with that method, no? Or I'm misunderstanding?Koradhil means that an experienced hacker would make a special formed HTML page himself to submit unfiltered POST data, so server-side filtering with HTML-purifier is still required. May the Source be with you!
|