Wordpress Plugin Data & Request Security(#5) | Method: Securing Output (Escaping)
Рет қаралды 2,018
Күн бұрынHi, In this video session we have seen about WORDPRESS PLUGIN DATA & SECURITY: SECURING OUTPUT (Escaping)
Methods to Protect data & Request
1. USER ROLES / CAPABILITIES = Part#2
2. DATA VALIDATION = Part#3
3. SECURING INPUT (Sanitizing Input) = Part#4
4. SECURING OUTPUT (Escaping) = Part#5
5. NONCES
SECURING OUTPUT
Securing output is the process of escaping output data.
This is done to prevent XSS attack and also to make sure that the data is displayed
the way the user expects it to be.
What is Escaping?
Escaping converts the special HTML characters to HTML entities so that they are
displayed, instead of being executed.
Escaping functions are:
------------------------------------------------
esc_html()
This functions escapes HTML specific characters.
esc_textarea()
Use esc_textarea() instead of esc_html() while displays text in textarea. Because
esc_textarea() can double encode entities.
esc_attr()
This function encodes the angularBrackets, &, " and ' characters. It will never double encode
entities. This function is used to escape the value of HTML tags attributes.
esc_url()
URLs can also contain JavaScript code in them. So, if you want to display a URL or a
complete a tag, then you should escape the href attribute or else it can cause an
XSS attack.
Github: github.com/owt...
SOCIAL :
===============
Subscribe : www.youtube.co....
FACEBOOK : / onlinewebtut. .
TWITTER: / owthub
BLOG: onlinewebtutor...
RECOMMENDATION:
===============
1. Some knowledge of PHP, HTML for this video series
2. How to Install Wordpress: www.youtube.co....
Also you can learn Wordpress Custom
===============
Theme Development: www.youtube.co....
Widget Development: www.youtube.co....
Tags
=============
wordpress data security,
wordpress request security,
wordpress data and request security,
security of data in wordpress,
request security of wordpress,
user role and capabilites in wordpress,
user roles in wordpress,
wordpress nonces,
complete detail of wordpress nonces,
wordpress security,
sanitizing in wordpress,
escaping of data in wordpress,
secure input in wordpress,
output securing in wordpress,
ajax security in wordpress,
online web tutor,
profotech solutions,
Thanks
Online Web Tutor
Keep learning and Sharing :)
@VladDubovyi 3 жыл бұрын
Useful explanation. thanks
@mgamaljimmy7566 4 жыл бұрын
thanks for the toturial
@OnlineWebTutor 4 жыл бұрын
Welcome
@hasanhira-me 4 жыл бұрын
Thanks a lot. Well done.
@OnlineWebTutor 4 жыл бұрын
Thank you too!
@anikmukhles 5 жыл бұрын
good..
@OnlineWebTutor 5 жыл бұрын
Thanks @anik mukhles
@ינוןאלבז-כ1ז 6 жыл бұрын
thanks
@niloys7 6 жыл бұрын
Hi sanjay, please make some advance video tutorial based on paypal or stripe api like woocommerce.
@OnlineWebTutor 6 жыл бұрын
Ok
@АшотПогосян-л9м 4 жыл бұрын
Hi Sanjay, than's for good video , but i need to ask you something. I ask you to stop saying the word "OK" after each sentence. Hi from Armenia
@OnlineWebTutor 4 жыл бұрын
Hahahaha Thanks for the pointing out. I have now removed this Ok keyword from my lines. You can check the latest uploads
@rembrandt702 5 жыл бұрын
You need to slow down.
@OnlineWebTutor 5 жыл бұрын
Yes @Andres Rivera we also have observed. Thanks for pointing.
Online Web Tutor
Рет қаралды 1,8 М.
Patrick God
Рет қаралды 158 М.
Stanford Graduate School of Business
Рет қаралды 44 МЛН