I'm doing a simple register form and I need to pass some parmeters in url, however I'm concerned about the security in java. in PHP I used to use
mysql_escape_string
To make sure no special characters is passed to the variable. however I'm not sure if thats needed in Java.
the question is : is it safe to use request.getAttribute(arg0) directly or do I need to secure it using some special method ?