What are the best PHP input sanitizing functions?

后端 未结 13 1491
抹茶落季
抹茶落季 2020-11-21 23:31

I am trying to come up with a function that I can pass all my strings through to sanitize. So that the string that comes out of it will be safe for database insertion. But t

13条回答
  •  长发绾君心
    2020-11-21 23:48

    function sanitize($string,$dbmin,$dbmax){
    $string = preg_replace('#[^a-z0-9]#i', '', $string); //useful for strict cleanse, alphanumeric here
    $string = mysqli_real_escape_string($con, $string); //get ready for db
    if(strlen($string) > $dbmax || strlen($string) < $dbmin){
        echo "reject_this"; exit();
        }
    return $string;
    }
    

提交回复
热议问题