sFire PHP Framework
To prevent XSS (Cross-site Scripting) attacks, sFire lets you use the "token" method. To use this token, you can use the Form Validating to validate the input.
@form('token')
//Will output something similar to:
<input type="hidden" name="_token-name" value="aNvFbKwqlhNjr2ldBmjr">
<input type="hidden" name="_token-value" value="fhiQDSf5zXycYdtbr2E7QQEnGDF6zwCebQv8JBBs">
Note: All the names and values are stored in the session. By default, there is a limit which is configured in the app.php.