Return to Snippet

Revision: 18437
at September 30, 2009 08:54 by paulgrenwood


Initial Code
function clean($value) { 
// If magic quotes not turned on add slashes. 
if(!get_magic_quotes_gpc()) 

// Adds the slashes. 
{ $value = addslashes($value); } 

// Strip any tags from the value. 
$value = strip_tags($value); 

// Return the value out of the function. 
return $value; 
}

$sample = "<a href='#'>test</a>";
$sample = clean($sample);
echo $sample;

Initial URL

                                

Initial Description
Variables that are submitted via web forms always need to be cleaned/sanitized before use in any way, to prevent against all kinds of different malicious intent.

Initial Title
Cleaning Variables

Initial Tags
php, forms

Initial Language
PHP