'Perfect' anti-XSS and anti-SQL injection code spray
Release: 2016-07-25 08:50:51
Original
1286 people have browsed it
Haha, I have posted a paragraph before, here is another paragraph. The company believes that these two codes in this project are very good and can prevent all code attacks, so I will publish them here. Please break it, please hurry up and break it.
- function gjj($str)
- {
- $farr = array(
- "/\s+/",
- "/<(\/?)(script|i?frame|style|html|body|title |link|meta|object|\?|\%)([^>]*?)>/isU",
- "/(<[^>]*)on[a-zA-Z]+ s*=([^>]*>)/isU",
- );
- $str = preg_replace($farr,"",$str);
- return addslashes($str);
- }
-
- function hg_input_bb ($array)
- {
- if (is_array($array))
- {
- foreach($array AS $k => $v)
- {
- $array[$k] = hg_input_bb($v);
- }
- }
- else
- {
- $array = gjj($array);
- }
- return $array;
- }
- $_REQUEST = hg_input_bb($_REQUEST);
- $_GET = hg_input_bb($_GET);
- $_POST = hg_input_bb( $_POST);
Copy code
|
Statement of this Website
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Latest Articles by Author
-
2024-10-22 09:46:29
-
2024-10-13 13:53:41
-
2024-10-12 12:15:51
-
2024-10-11 22:47:31
-
2024-10-11 19:36:51
-
2024-10-11 15:50:41
-
2024-10-11 15:07:41
-
2024-10-11 14:21:21
-
2024-10-11 12:59:11
-
2024-10-11 12:17:31