function clean_value($val) {
if ($val == "")
{
return "";
}
$val = trim($val);
$val = str_replace( " " , " " , $val );
$val = str_replace( "&" , "&" , $val );
$val = str_replace( "<!--" , "<!--" , $val );
$val = str_replace( "-->" , "-->" , $val );
$val = preg_replace( "/<script/i" , "<script" , $val );
$val = str_replace( ">" , ">" , $val );
$val = str_replace( "<" , "<" , $val );
$val = str_replace( "\"" , """ , $val );
$val = preg_replace( "/\|/" , "|" , $val );
$val = preg_replace( "/\n/" , "<br>" , $val ); // Convert literal newlines
$val = preg_replace( "/\\\$/" , "$" , $val );
$val = preg_replace( "/\r/" , "" , $val ); // Remove literal carriage returns
$val = str_replace( "!" , "!" , $val );
$val = str_replace( "'" , "'" , $val ); // IMPORTANT: It helps to increase sql query afety.
$val = stripslashes($val); // Swop PHP added backslashes
$val = preg_replace( "/\\\/" , "\" , $val ); // Swop user inputted backslashes
return $val;
}
if ($val == "")
{
return "";
}
$val = trim($val);
$val = str_replace( " " , " " , $val );
$val = str_replace( "&" , "&" , $val );
$val = str_replace( "<!--" , "<!--" , $val );
$val = str_replace( "-->" , "-->" , $val );
$val = preg_replace( "/<script/i" , "<script" , $val );
$val = str_replace( ">" , ">" , $val );
$val = str_replace( "<" , "<" , $val );
$val = str_replace( "\"" , """ , $val );
$val = preg_replace( "/\|/" , "|" , $val );
$val = preg_replace( "/\n/" , "<br>" , $val ); // Convert literal newlines
$val = preg_replace( "/\\\$/" , "$" , $val );
$val = preg_replace( "/\r/" , "" , $val ); // Remove literal carriage returns
$val = str_replace( "!" , "!" , $val );
$val = str_replace( "'" , "'" , $val ); // IMPORTANT: It helps to increase sql query afety.
$val = stripslashes($val); // Swop PHP added backslashes
$val = preg_replace( "/\\\/" , "\" , $val ); // Swop user inputted backslashes
return $val;
}
解决方案 »
- ngix
- 为什么我的var_dump($file_suffix=="php")总是false?明明值一样的啊.
- gd2产生的缩略图,原图大红色,有的有明显的失真,有的没有明显的失真。
- 想实现PHP将数据导出为excel表格!
- 安装配置Apache2.0.59+PHP5.1.6出现问题
- php中如何将查询和结果在同一页面显示
- 总括来说,什么时候会用到P3P?
- 请问:数据库中两个完全相同权限的用户为什么有一个无法写入呢?
- 大家好,我在设计购物车是时,有一个清空购物车,我的思路是清空car这个数据库,但不知怎么写这个sql语句
- 关于php读写文件共享冲突
- 请教连接mysql数据库的问题?
- 谁用过51的空间,Session怎么不能用???
nl2br()将你表单里传来的字串处理一下后再存入数据库,这样就会在有回车换行的地方 有一个,<br>这样再显示的时候就会有换行了……
嘻嘻……
试一下吧……不行回来找我……
~果然这样简单!!
但是feel8那个呢?好复杂哦!!!!!!!!!!!!~
~唉~看来小弟初学php全靠你们罩我啊!!!