From only a search enging search my page is showing results cashed in the database somehow. I need someone who knows how to fix code injections from php XSS Attacks.
Example: Please click on the page [url removed, login to view]
[url removed, login to view];hl=en&rlz=&q=florida+flatbed+loads
[url removed, login to view];fr=yfp-t-501&toggle=1&cop=mss&ei=UTF-8
If you go directly to the page you will not see the error messages and the malicious code.
[url removed, login to view]
I have attached two files. Using the php htmlentities function I showed the html for one good page directly from the site. And one bad page coming from the search engines. You can see the difference and the extra code.
I believe this is some code still in my database. I need some one to fix or develop a way to use only safeHTML, or a way to filter out the bad code from the table.
7 freelancers are bidding on average $84 for this job
we are security team experienced in development and vulnerability testing. We correct the reported error and check for other possible vulnerability. please pm for more information. best regards CSR