Welcome to the Webmaster Forum.
Results 1 to 2 of 2
  1. #1
    Junior Member
    Join Date
    Oct 2012
    Posts
    5

    Looking for a PHP function to prevent sql injections

    Is there a built in PHP function which can be applied on a input taken from a form to make the input less risky for the database. Recently one of the website i manage was hit really bad by hackers and they try to insert malicious codes and scripts. Fortunate enough for me i caught it early and i think i have avoided the damage this time but i cannot keep on checking all the time so i am looking for a read made PHP function or a group of functions which can detect and remove certain strings which should not be going to my database and thus avoiding mysql injections

  2. #2
    Member
    Join Date
    Feb 2013
    Location
    Los Angeles, CA
    Posts
    30
    I do not know if you have solved your problem or not yet but here is a function that I use to remove bad things from user inputs. All you do is put this at the begginning of your file and instead of $_POST['example'] you put $scrubbed['example']

    PHP Code:
    [CODE]
    function 
    spam_scrubber($value) {
                
                
    // List of very bad characters.
                
    $very_bad = array('to:''cc:''bcc:''content-type:''mime-version:''multipart-mixed:''content-transfer-encoding:');
                
                
    // If any of the very bad strings are in the submitted value, return an empty string:
                
    foreach ($very_bad as $v) {
                    if (
    stripos($value$v) !== false) return '';
                }
                
                
    // Replace any newline characters with spaces:
                
    $value str_replace(array( "\r""\n""%oa""%od"), '  '$value);
                
                
    // Return the value:
                
    return trim($value);
                
            } 
    // End of Spam Scrubber Function
            
            // Clean the form data:
            
    $scrubbed array_map('spam_scrubber'$_POST);
    [/
    CODE

 

 

Similar Threads

  1. Prevent Laptop From Overheating
    By williams22 in forum General Talk
    Replies: 2
    Last Post: 11-30-2018, 01:13 PM
  2. about Magic function in php?
    By Prince25 in forum PHP
    Replies: 3
    Last Post: 07-18-2014, 09:16 AM
  3. PHP Function To Get File Size
    By vincentmic in forum PHP
    Replies: 3
    Last Post: 02-18-2013, 06:28 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Back to top

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203