http://snipplr.com/language/php/tags/escape Recent snippets posted on Snipplr.com en-us Mon, 08 Sep 2008 08:28:41 GMT http://snipplr.com/view/6266/secure-undo-magicquotes/ This was taken out of a presentation by eZ systems on PHP Best Practices

]]> Fri, 16 May 2008 10:31:13 GMT http://snipplr.com/view/6266/secure-undo-magicquotes/ http://snipplr.com/view/5331/php-escape-for-sql/

]]> Sun, 09 Mar 2008 01:27:06 GMT http://snipplr.com/view/5331/php-escape-for-sql/ http://snipplr.com/view/2511/escape-an-entire-array-to-prevent-injection-attacks/ Usage: $_POST = mysql_real_escape_array($_POST)

]]> Fri, 20 Apr 2007 10:14:48 GMT http://snipplr.com/view/2511/escape-an-entire-array-to-prevent-injection-attacks/ http://snipplr.com/view/1355/smart-mysql-escape-function/ This function first checks to see if PHP is set to automagically quote stuff. If it is, we first strip pre-quoted stuff, then (assuming our text isn't numeric), we properly quote everything. A good bit of room for improvement here, but at the very least, you should hit this before inserting anything into your database.

]]> Mon, 09 Oct 2006 11:28:12 GMT http://snipplr.com/view/1355/smart-mysql-escape-function/ http://snipplr.com/view/1/fix-form-slashes/ Fixes MAGIC_QUOTES.

]]> Wed, 31 Dec 1969 19:00:00 GMT http://snipplr.com/view/1/fix-form-slashes/