Jump to content

phpnoob

Members
 View Profile  See their activity

  • Posts

    117

  • Joined

  • Last visited

 Content Type 

Posts posted by phpnoob

    Security for post

    in PHP

    Posted · Edited by phpnoob

    It sounds like your server has the magic quotes option enabled. There's no reason to have that option enabled, I don't know why so many servers have it on. Check the top answer here for some code which will remove magic quotes. Just keep in mind it's your responsibility to protect against SQL injection attacks. http://stackoverflow...c-quotes-are-on
    just wondering, this code enough? or can i remove something?edit:nvm i understand now what you talk :), ok i try your code

    Security for post

    in PHP

    Posted

    I was made a post secure for my forum, and now i have time to finish it, but i'm stock and need help. 

    $post=htmlspecialchars($_POST['post']);$search=array('<?','?>');$replace=array('<?', '?>');echo str_replace($search, $replace, $post);

    The problem, if i send a " the code add this \\" <----

    • Like 1
×
×
  • Create New...