Detailed use of PHP magic_quotes_gpc_PHP tutorial
What we want to introduce to you today is 1.
Condition: PHP magic_quotes_gpc=off
The string written to the database has not been filtered in any way. The string read from the database is not processed in any way.
Data: $data="snow"''sun"; (There are four consecutive single quotes between snow and sun).
Operation: Change the string: "snow"' 'sun" is written to the database,
Result: SQL statement error occurs, mysql cannot successfully complete the SQL statement, and writing to the database fails.
Database saving format: No data.
Output data format: No data.
Note: Unprocessed single quotes will cause SQL statement errors when written to the database.
2.
Condition: PHP magic_quotes_gpc=off
The string written to the database is processed by the function addlashes(). The string read from the database is not processed in any way.
Data: $data="snow"''sun"; (There are four consecutive single quotes between snow and sun).
Operation: Change the string: "snow"' 'sun" is written to the database,
Result: The sql statement is executed smoothly and the data is successfully written to the database
Database saving format: snow"''sun (same as input)
Output data format: snow"''sun (same as input)
Explanation: The addslashes() function converts single quotes into ' escape characters so that the sql statement can be executed successfully,
but ' does not As data is stored in the database, the database saves snow''''sun and not the snow''''sun we imagined
3.
Conditions: PHP magic_quotes_gpc=on
Write to the database The string has not been processed in any way. The string read from the database has not been processed in any way: $data="snow"''sun"; (There are four consecutive characters between snow and sun. Single quote).
Operation: Write the string: "snow"''sun" into the database,
Result: The sql statement is executed smoothly, and the data is successfully written into the database
Database saving format: snow”''sun (same as input)
Output data format: snow”''sun (same as input)
Instructions: PHP magic_quotes_gpc=on will single quotes The escape character converted to ' causes the sql statement to be executed successfully,
but ' is not entered into the database as data. The database saves snow''''sun instead of snow''''sun as we imagined.
4.
The string written to the database is processed by the function addlashes(). The string read from the database is not processed in any way.
Data: $data="snow"''sun"; (There are four consecutive single quotes between snow and sun).
Operation: Change the string: "snow"' 'sun" is written to the database,
Result: The sql statement is executed smoothly and the data is successfully written to the database
Database saving format: snow''''sun (escape characters added)
Output data format: snow''''sun (with escape characters added)
Description: PHP magic_quotes_gpc=on converts single quotes into 'escape characters so that the sql statement can be executed successfully,
addslashes converts the single quotes that are about to be written into the database into ', and the latter conversion is written into the database as data. The database saves snow''''sun
which is summarized as follows:
we can not perform
If you perform addslashes() on the input data at this time,
2. For the case of PHP magic_quotes_gpc=off
must use addslashes() to process the input data, but there is no need to use stripslashes() to format the output
because addslashes() The backslash is not written to the database together, it just helps mysql complete the execution of the sql statement.
Supplement:
PHP magic_quotes_gpc scope is: WEB client server; action time: when the request starts, such as when the script is running.
magic_quotes_runtime scope: data read from a file or the result of executing exec() or obtained from a SQL query; action time: every time the script accesses the data generated in the running state
http://www.bkjia.com/PHPjc/446297.html

Hot AI Tools

Undresser.AI Undress
AI-powered app for creating realistic nude photos

AI Clothes Remover
Online AI tool for removing clothes from photos.

Undress AI Tool
Undress images for free

Clothoff.io
AI clothes remover

AI Hentai Generator
Generate AI Hentai for free.

Hot Article

Hot Tools

Notepad++7.3.1
Easy-to-use and free code editor

SublimeText3 Chinese version
Chinese version, very easy to use

Zend Studio 13.0.1
Powerful PHP integrated development environment

Dreamweaver CS6
Visual web development tools

SublimeText3 Mac version
God-level code editing software (SublimeText3)

Hot Topics

In this chapter, we will understand the Environment Variables, General Configuration, Database Configuration and Email Configuration in CakePHP.

PHP 8.4 brings several new features, security improvements, and performance improvements with healthy amounts of feature deprecations and removals. This guide explains how to install PHP 8.4 or upgrade to PHP 8.4 on Ubuntu, Debian, or their derivati

To work with date and time in cakephp4, we are going to make use of the available FrozenTime class.

To work on file upload we are going to use the form helper. Here, is an example for file upload.

In this chapter, we are going to learn the following topics related to routing ?

CakePHP is an open-source framework for PHP. It is intended to make developing, deploying and maintaining applications much easier. CakePHP is based on a MVC-like architecture that is both powerful and easy to grasp. Models, Views, and Controllers gu

Visual Studio Code, also known as VS Code, is a free source code editor — or integrated development environment (IDE) — available for all major operating systems. With a large collection of extensions for many programming languages, VS Code can be c

Validator can be created by adding the following two lines in the controller.
