Jump to content

Existing user? Sign In
Sign In

Remember me Not recommended on shared computers

Forgot your password?
Sign Up

Browse
- Forums
- Staff
- Leaderboard
- Guidelines
- Terms of Service
- More
Activity
- All Activity
- Search
- More
Join our Discord!
More
- More

PHP Coding Help

If you take user inputs and use the functions strip_tags() and addslashes(),...

Kibret

By Kibret
February 19, 2010 in PHP Coding Help

Start new topic

Recommended Posts

Kibret

Newbie

Kibret

Posted February 19, 2010

- Share

Posted February 19, 2010

Will it pretty much solve every threat?

*and for database queries, mysql_real_escape_string()

What other functions are there?

Link to comment

https://forums.phpfreaks.com/topic/192641-if-you-take-user-inputs-and-use-the-functions-strip_tags-and-addslashes/

Share on other sites

SchweppesAle

Advanced Member

SchweppesAle

Posted February 19, 2010

- Share

Posted February 19, 2010

Will it pretty much solve every threat?

*and for database queries, mysql_real_escape_string()

What other functions are there?

use mysql_real_escape_string() instead. They'll be removing addslashes() from PHP6.

In terms of security, if you want to be on the safe side you can cast your variables as well.

//after fetching the variable $tableID

$tableID = (int)$tableID;

etc

Link to comment

https://forums.phpfreaks.com/topic/192641-if-you-take-user-inputs-and-use-the-functions-strip_tags-and-addslashes/#findComment-1014983

Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

×

Browse
- Back
- Forums
- Staff
- Leaderboard
- Guidelines
- Terms of Service
Activity
- Back
- All Activity
- Search
Join our Discord!

×

Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.