« Return to the blog entry
However - it's just a matter of time before someone could successfully screw up a record with url encoding %2f and %25. Maybe run a url decode on your inputs before removing < and >?
However - it's just a matter of time before someone could successfully screw up a record with url encoding %2f and %25. Maybe run a url decode on your inputs before removing < and >?