That would be correct. but two things I have to add:
* it's called bad style to re-write (override) predefined vars like
_POST, _GET, _SERVER ...
* using strip_tags() to clean user-input for safe output ist not O.K.!
use htmlspecialchars(), at least.
Regards,
2009/3/28 Virgilio Quilario :
>> Hi
Try this...
$_POST = array_map('stri_tags', $_POST);
Igor Escobar
systems analyst & interface designer
www . igorescobar . com
On Sat, Mar 28, 2009 at 6:21 PM, Angus Mann wrote:
> Thanks Ashley...that did the trick.
> After reading about the limitations of strip_tags I decided to just repla
Thanks Ashley...that did the trick.
After reading about the limitations of strip_tags I decided to just replace
the bad bits as below...
It still uses your "foreach" suggestion but replaces "<" and ">" with "("
and ")" instead of stripping tags.
I think I will extend the good and bad arrays to
> Hi all.
>
> I'm writing a script that accepts several different forms with different
> content. Depending on what data is sent with the form the script will do one
> or the other think.
>
> Before the form data is processed I'd like to scrub it of HTML tags.
>
> I can do this manually as below
On Sat, 2009-03-28 at 18:28 +1000, Angus Mann wrote:
> Hi all.
>
> I'm writing a script that accepts several different forms with different
> content. Depending on what data is sent with the form the script will do one
> or the other think.
>
> Before the form data is processed I'd like to scru
Hi all.
I'm writing a script that accepts several different forms with different
content. Depending on what data is sent with the form the script will do one or
the other think.
Before the form data is processed I'd like to scrub it of HTML tags.
I can do this manually as below but the form ma
6 matches
Mail list logo
