Originally Posted by Andrew R
Sorry, but you did a horrible job coding this. Not only did you allow scripts to be injected, but you don't even check if there was a value inputted. I just submitted a completely blank form, and its showing up on the main page now.
|
Yeah. I kinda rushed it. Shouldn't have really. I'm usually a better coder than that.
Anyway - I have fixed a lot of bugs now.
Bugs fixed
Script injection - Stripping tags from content coming in and out of the database
Empty form submission - Redirect to error page on empty field detection
Profanities - Added a word filter. The site will be checked daily and have the list updated
New Features
Word Filter
Dropped Features
Video upload
I just don't have the space or bandwidth\transfer to do it.
Remember - It's just a bit of fun :P