http://snipplr.com/language/php/tags/injection Recent snippets posted on Snipplr.com en-us Sat, 06 Sep 2008 19:31:49 GMT http://snipplr.com/view/5331/php-escape-for-sql/

]]> Sun, 09 Mar 2008 01:27:06 GMT http://snipplr.com/view/5331/php-escape-for-sql/ http://snipplr.com/view/4205/prevent-sql-injection/ Pass a user-inputted variable to this function in order to prevent SQL injection. Example: mysql_query("INSERT INTO table VALUES('" . sql_sanitize($_POST["variable") . "')"); Instead of: mysql_query("INSERT INTO table VALUES('" . $_POST["variable"] . "'");

]]> Wed, 28 Nov 2007 09:25:01 GMT http://snipplr.com/view/4205/prevent-sql-injection/ http://snipplr.com/view/4165/clean-user-input-data--get-post-cookie-/ Created for my own purposes, thought I'd share though ;) copy paste at the top of your file and it does the magic :)

]]> Wed, 21 Nov 2007 03:57:32 GMT http://snipplr.com/view/4165/clean-user-input-data--get-post-cookie-/ http://snipplr.com/view/1915/php--limpiar-inyeccin-sql/

]]> Wed, 03 Jan 2007 11:03:13 GMT http://snipplr.com/view/1915/php--limpiar-inyeccin-sql/ http://snipplr.com/view/1764/the-sterilizer/ This function is used to cleanse user input data before creating queries to prevent SQL Injection attacks. This should also work to prevent XSS attempts through user input as well.

]]> Thu, 07 Dec 2006 11:58:00 GMT http://snipplr.com/view/1764/the-sterilizer/ http://snipplr.com/view/342/fuselogic--lite-version-of-dependency-injection/ Very usefull lite dependency injection for PHP5. Usage: di exends fuselogic_container() { function __construct() { parant::__construct(__FILE__); } } safe this to the folder with others class with name "class.class_name.php' then you can do like bellow $di = new di(); $c1 = $di->class_x; //singleton $c2 = $di->class_x; //singleton $c3 = $di->class_x(); //not singleton

]]> Tue, 11 Jul 2006 00:31:43 GMT http://snipplr.com/view/342/fuselogic--lite-version-of-dependency-injection/