Re: [PHP] sanitizing get vars — PHP — IT news, forums, messages

You are here: Re: [PHP] sanitizing get vars « PHP « IT news, forums, messages

Posted by GamblerZG on 06/02/05 22:28

> set_magic_quotes_runtime( 0 );

This is for database, not for showing data in browser. For browser you
need to kill all unknow tags and all unknown properties of known tags.
Afterwards, you need to prepend http:// to any urls that have unknow
protocols. Alternatively, you can make sure that data diplayed to user
is submitted by the same user.

Example of the former method:

http://token.by.ru/ksscripts/htmlparser6.txt

Navigation:

Next in forum: Re: [PHP] Delay?
Prev in forum: Best way to use other objects within classes?
Thread view: Re: [PHP] sanitizing get vars

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация