Php quick search for malicious code in the database
This example describes how php can quickly find malicious code in a database. Share it with you for your reference. The details are as follows:
The database is entered with malicious code. To ensure the security of your database, you must carefully clean it up. With the following super convenient function, you can quickly clear malicious database code.
| 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 |
Function cleanInput ($ input ){ $ Search = array ( '@] *?>. *? @ Si', // Strip out javascript '@ <[\/\!] *? [^ <>] *?> @ Si', // Strip out HTML tags '@ ] *?>. *? @ SiU ', // Strip style tags properly '@' // Strip multi-line comments ); $ Output = preg_replace ($ search, '', $ input ); Return $ output; } Function sanitize ($ input ){ If (is_array ($ input )){ Foreach ($ input as $ var => $ val ){ $ Output [$ var] = sanitize ($ val ); } } Else { If (get_magic_quotes_gpc ()){ $ Input = stripslashes ($ input ); } $ Input = cleanInput ($ input ); $ Output = mysql_real_escape_string ($ input ); } Return $ output; } // Usage: $ Bad_string = "Hi! It's a good day! "; $ Good_string = sanitize ($ bad_string ); // $ Good_string returns "Hi! It \'s a good day! " // Also use for getting POST/GET variables $ _ POST = sanitize ($ _ POST ); $ _ GET = sanitize ($ _ GET ); |
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
