poe Posted May 16, 2007 Share Posted May 16, 2007 what is the best way to ensure that your form is secure i am using htmlspecialchars() is this good enough? if i have form: <input type=text name=aboutme> then in my php i have $allaboutme = htmlspecialchars($_POST['aboutme']); //sql statement "insert into table ( `about` ) values( ".$allaboutme." )"; Link to comment https://forums.phpfreaks.com/topic/51712-form-security/ Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.