posted 18 years ago
Hi,
Is there a open source library for checking sql injection and cross side scripting. We have written a small component as a web filter which checks for sql injection and cross scripting but its very basic, it checks for % and ' and etc similary for cross side scripting. Is there any library which can validate user input? Also where can i read more about preventing sql injection and cross side scripting, i have gone through java.net articles.
Prashant