Duplicate of:
This is a security question.
What should I look for in URL that prevents hacking?
Is there a way to execute javascript by passing it inside a URL?
As you can see I'm pretty new to this concept.
Any good posts on this stuff?
See Question&Answers more detail:os