monkeybidz Posted May 14, 2010 Share Posted May 14, 2010 I have a form in html. Results from that form are posted to a php page where the result is: The form: <input type="text" name="query" id="query" size="40" value="<? print quote_replace($query);?>" action="search_results.php" columns="2" autocomplete="off" delay="1500"> The PHP page: $query = $_POST[query]; How can I remove any scripts that are injected in the form text field? Link to comment https://forums.phpfreaks.com/topic/201785-remove-scripts-from-search-post/ Share on other sites More sharing options...
.Stealth Posted May 14, 2010 Share Posted May 14, 2010 You need to have a read about security. http://www.google.com/search?hl=en&q=php+form+security&btnG=Search&aq=f&aqi=g-p2g1&aql=&oq=&gs_rfai= Link to comment https://forums.phpfreaks.com/topic/201785-remove-scripts-from-search-post/#findComment-1058525 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.