https://www.webmaster-forums.net/crss/node/1019509 en https://www.webmaster-forums.net/server-side-scripting/securing-forms-malicious-code#comment-1117019 <p>What kind of malicious code? If your worried about people trying to pass PHP code to execute, just don't eval() anything from the form. If your worried about javascript (like in a guestbook), you should strip all HTML tags.</p> Mon, 28 Oct 2002 17:20:40 +0000 Mark Hensler comment 1117019 at https://www.webmaster-forums.net