Php Effective Anti Injection Script -> No symbol block

[kirka121]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

hmm, okai, i l see if this works on the ultrahackable muweb 0.8 ;D

 

[Team_NOVA]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

lolz gj 10/10
;]

 

[iBimbo]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

I will allow this bump cus its useful.

If you do it again Kirka you'll be infracted.

 

[kirka121]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

um.. why exactly? because i replied to a 1year old topic? whats wrong with that?

 

[christoper]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

thanks for the release !!!

 

[LuC1o08]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

don't use this script.. you will be hacked !

 

[themad]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

don't use this script.. you will be hacked !

Care to bring some arguments to the table?

 

[andrelis34]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

i added this script to my config.php , is ir right?

 

[nanoman]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

Big thanks for the script! Works perfectly! But how do I add a return text or redirection to other page if someone has been trying to inject?

 

[Ness2233]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

el problema es que donde lo pongo?

gracias

 

[Hacke]

Re: [Release] Php Effective Anti Injection Script -> No symbol block

to add this to your web you need to add that scribt into EACH web file that connect with your DATABSE

if there is already a script tag just add it above it if not you need add a sript tag blablabla... like

<?
ADD SQL INJECTION SCRIPT HERE
?>

ok now some ppl may say just add it to index.php since it includes all other stuff (this helps only against total retards^^) but the point is ppl dont need to use index.php they can navigate in the website easy by using ip/characters.php blabla and so on so you need to add it to EACH and i like to repeat it EACH file with db connection to be sure that you are safe ^^

 

[themad]

Rephrased:

function xw_sanitycheck($str){ return strpos(str_replace('\'\'','',' '.$str),'\'') ? str_replace('\'', '\'\'', $str) : $str; }

function secure($str){
    if (is_array($str))
        foreach($str AS $id => $value)
            $str["$id"] = secure($value);
    else
        $str = xw_sanitycheck($str);

    return $str;
}

function secure2(&$str){
    return secure($str);
}

secure2($_GET);
secure2($_POST);
secure2($_COOKIE);