It all depends on what you will do with the data... The use will dictate the level of cleaning up. You MUST clean it up for DB entries as you mentioned, but if you are only going to e-mail the contents "as-is" to yourself etc, then cleaning up the data becomes of lesser importance.
On Sun, 2003-03-09 at 21:18, Chris Cook wrote: > Hello all, > > When using forms, when do I have to worry about cleaning up user data? I > know to use escapeshellarg() when using system functions, but how about when > using the user data for database inserts? Also, if I do not insert the data > into the database or use any system commands, do I still need to clean the > data? > > Thanks, > Chris > > > > > _________________________________________________________________ > Add photos to your e-mail with MSN 8. Get 2 months FREE*. > http://join.msn.com/?page=features/featuredemail > > > -- > PHP General Mailing List (http://www.php.net/) > To unsubscribe, visit: http://www.php.net/unsub.php > -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
