Classic php anti-injection function code .? Php Tutorial ************************** instructions: determine whether the passed variables contain invalid characters such as $ _ post and $ _ get: anti-injection ************************** illegal content to be filtered out
/*************************
Note:
Determines whether the passed variable contains invalid characters.
Such as $ _ post and $ _ get
Function:
Anti-injection
**************************/
// Invalid characters to be filtered. the characters to be filtered can also be added.
$ Arrfiltrate = array ("'", ";", "union ");
// The url to be redirected after an error occurs. If this parameter is left blank, the previous page is displayed by default.
$ Strgourl = "";
// Whether the value in the array exists
Function funstringexist ($ strfiltrate, $ arrfiltrate ){
Foreach ($ arrfiltrate as $ key => $ value ){
If (eregi ($ value, $ strfiltrate )){
Return true;
}
}
Return false;
}
// Merge $ _ post and $ _ get
If (function_exists (array_merge )){
$ Arrpostandget = array_merge ($ http_post_vars, $ http_get_vars );
} Else {
Foreach ($ http_post_vars as $ key => $ value ){
$ Arrpostandget [] = $ value;
}
Foreach ($ http_get_vars as $ key => $ value ){
$ Arrpostandget [] = $ value;
}
}
// Verification starts
Foreach ($ arrpostandget as $ key => $ value ){
If (funstringexist ($ value, $ arrfiltrate )){
Echo"