Jump to content

Archived

This topic is now archived and is closed to further replies.

afrikdeveloper

get_magic_quotes_gpc() function is deprecated? some help please

Recommended Posts

Hi everybody,

 

 i am a PHP newbie, i have a web development projet and i need to know and understand php properly for that projet.

 

In php 5, magic_quotes_gpc() is deprecated and remove, what others function we can use to prevent sql injection.

 

So this is a function that i want to use in my proccess of preventing sql injection, but  

 

get_magic_quotes_gpc() is deprecated. Is there another work around for this function. any tips and explaination will help. thanks

 

/=======THIS IS THE FUNCTION FROM THE PHP MANUAL

function quote_smart($value, $handle)

{

   // Stripslashes

   if (get_magic_quotes_gpc()) {

       $value = stripslashes($value);

   }

   // Quote if not integer

   if (!is_numeric($value)) {

       $value = "'" . mysqli_real_escape_string($value, $handle) . "'";

   }

   return $value;

}

 

//=======END OF FUNCTION FROM THE PHP MANUAL

Share this post


Link to post
Share on other sites

I'm not sure what you're looking for. The code you posted has what you need.

$value = "'" . mysqli_real_escape_string($value, $handle) . "'";
This is how you prevent SQL injection.

Share this post


Link to post
Share on other sites

×
×
  • Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.