This is old, but suffice to say, I had never seen it before. This could be a testiment to how insecure my web apps probably are, but I’ve been really concerned about security lately, and am looking to go a little bit beyond just cleaning the input. After doing a quick Google search, I found this link to be the most helpful. I just thought I’d post it here in case anyone else might want to take a look.
