* For JavaScript, always output using innerText (IE) or textContent (FF), * Do NOT use innerHTML. Using innerHTML is weak anyway. When * attempting DHTML, program with the proper interface which is * the DOM. Thats what it is there for. */ // encode the output following OWASP standards // this will be HTML encoding because we are outputting data into HTML $lEncodeOutput = TRUE; $luseSafeJavaScript = "true"; break; } // end switch require_once __ROOT__ . '/classes/ClientInformationHandler.php'; $lClientInformationHandler = new ClientInformationHandler(); if ($lEncodeOutput) { $lWhoIsInformation = $Encoder->encodeForHTML($lClientInformationHandler->whoIsClient()); $lOperatingSystem = $Encoder->encodeForHTML($lClientInformationHandler->getOperatingSystem()); $lBrowser = $Encoder->encodeForHTML($lClientInformationHandler->getBrowser()); $lClientHostname = $Encoder->encodeForHTML($lClientInformationHandler->getClientHostname()); $lClientIP = $Encoder->encodeForHTML($lClientInformationHandler->getClientIP()); $lClientUserAgentString = $Encoder->encodeForHTML($lClientInformationHandler->getClientUserAgentString()); $lClientReferrer = $Encoder->encodeForHTML($lClientInformationHandler->getClientReferrer()); $lClientPort = $Encoder->encodeForHTML($lClientInformationHandler->getClientPort()); } else { $lWhoIsInformation = $lClientInformationHandler->whoIsClient(); $lOperatingSystem = $lClientInformationHandler->getOperatingSystem(); $lBrowser = $lClientInformationHandler->getBrowser(); $lClientHostname = $lClientInformationHandler->getClientHostname(); $lClientIP = $lClientInformationHandler->getClientIP(); $lClientUserAgentString = $lClientInformationHandler->getClientUserAgentString(); $lClientReferrer = $lClientInformationHandler->getClientReferrer();