News Feed
Jobs Feed
Sections




News Archive
DevShed:
Sanitizing Strings with Filters in PHP 5
by Chris Cornutt September 03, 2009 @ 07:21:53

DevShed rounds the final corner on their sanitizing user input series of tutorials with the eighth part, a look at filtering inputted strings to remove potentially dangerous issues.

In this part, I discuss how to use the filter extension for sanitizing strings in all sorts of clever manners. I'll show you how to encode quotes, low and high ASCII characters in literals, and remove them in the same easy manner. Doing this can help prevent SQL injections and XSS attacks when developing PHP applications.

Their code shows how to use the FILTER_SANITIZE_STRING, FILTER_FLAG_NO_ENCODE_QUOTES, FILTER_FLAG_STRIP_LOW, FILTER_FLAG_STRIP_HIGH, FILTER_FLAG_ENCODE_LOW and FILTER_FLAG_ENCODE_HIGH filtering methods on a sample string or two and what they'd result in.

0 comments voice your opinion now!
filter extension tutorial string


blog comments powered by Disqus

Similar Posts

Adam Culp: Clean Development Series: Part 4, Rewrite dilemma

PseudoCoder.com: How To Really Use Xdebug To Speed Up Your App

Hari KT: Aura.Http : Request and Response

Tutorialzine.com: AJAX-enabled Sticky Notes With PHP & jQuery

MSBWare.com: Alternating Row Colors


 Community Events









Don't see your event here?
Let us know!

unittest release tool language code api zendframework2 introduction composer podcast opinion interview framework functional event testing example object development community

All content copyright, 2013 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework