# Injection ## XML Injection - Solution - Encode `<` with `&lt;` - Specify the type of HTML input: `<input type="email">` (front-end validation, which is more efficient) - [[sql-injection|SQL Injection]] - [[xss|Cross-Site Scripting]]