When you add the anti sql Function/Scipt is you have on the post antisql($_POST that are you ok but then if you add another anti sql scipt what do you do to antisql($_POST just leave or what becasue i dont think it works when i add 2 i only think one does help me please
You should only need sanitize data with one function call; but, if you want to wrap something twice (Pointless), then:
Code:function2( antisql( $_POST['user'] ) );
can you show me how to by the way its P-Team who hacks me for no reasonOriginally Posted by gWX0
can't you just put it in the same function as another "$sql=" ?
Sigh, just use this function:
XSS and SQL injection, for the most part, isn't possible in this setup; unless your queries don't use quotes (I haven't seen anyone do that yet, as it's pointless), or unless you take data from the database and enter that as an attribute in an HTML tag, and said data is modifiable by the user, then you're safe.Code:function antisql( $data ) { $data = str_replace( "'", "''", $data ); $data = htmlentities( $data ); return( $data ); }
Reply With Quote