|
Posted by Richard Lynch on 04/06/05 08:09
On Tue, April 5, 2005 9:22 pm, Eric Gorr said:
>> It's possible, though extremely unlikely, that somebody could construct
>> a
>> malicious email that passes through strip_tags and/or htmlentities and
>> still does something *bad* for your particular email application.
>
> Can you give an example?
No, I merely meant "theoretically possible" in the sense that of all the
possible combinations of characters in the universe, *one* of them could
do something nasty to your email client, even after strip_tags.
--
Like Music?
http://l-i-e.com/artists.htm
[Back to original message]
|