- Sprool
- |
- Exalted Legendary Member
- gamertag: [none]
- user homepage:
Posted by: jmh9072
Posted by: Sprool
I got it, I'll just add a <noscript> tag to your title, so that way, it blocks everything javascript, but you can still mess around with style and other html.You could use eregi() to throw an error upon finding "<script" anywhere in the submitted strings.Really? You mean it will search through GET and POST, and all values in them?