That would be correct. but two things I have to add:
* it's called bad style to re-write (override) predefined vars like
_POST, _GET, _SERVER ...
* using strip_tags() to clean user-input for safe output ist not O.K.!
use htmlspecialchars(), at least.
Regards,
2009/3/28 Virgilio Quilario :
>> Hi
Try this...
$_POST = array_map('stri_tags', $_POST);
Igor Escobar
systems analyst & interface designer
www . igorescobar . com
On Sat, Mar 28, 2009 at 6:21 PM, Angus Mann wrote:
> Thanks Ashley...that did the trick.
> After reading about the limitations of strip_tags I decided to just repla
Thanks Ashley...that did the trick.
After reading about the limitations of strip_tags I decided to just replace
the bad bits as below...
It still uses your "foreach" suggestion but replaces "<" and ">" with "("
and ")" instead of stripping tags.
I think I will extend the good and bad arrays to
> Hi all.
>
> I'm writing a script that accepts several different forms with different
> content. Depending on what data is sent with the form the script will do one
> or the other think.
>
> Before the form data is processed I'd like to scrub it of HTML tags.
>
> I can do this manually as below
On Sat, 2009-03-28 at 18:28 +1000, Angus Mann wrote:
> Hi all.
>
> I'm writing a script that accepts several different forms with different
> content. Depending on what data is sent with the form the script will do one
> or the other think.
>
> Before the form data is processed I'd like to scru
5 matches
Mail list logo
