contact_us.php
<form action="contact.php" method="POST">
<table border="0" cellpadding="2">
<tr>
<td>Name : </td>
<td><input name="nama" type="text" value="" size="30" /></td>
</tr>
<tr>
<td>E-mail: </td>
<td><input name="email" type="text" value="" size="20" /></td>
</tr>
<tr>
<td>Your message : </td>
<td><textarea name="comments" cols=30 rows=6></textarea></td>
</tr>
<tr>
<td></td>
<td><input name="send message" type="button" value="send message" />
</table>
</form>
Hello, out of this form I would like to create a form that's free from XXS attack. How to do so?