/*************************
Description
Determine if the passed variable contains illegal characters
such as $_post, $_get
Function:
Anti-injection
**************************/
To filter the illegal characters, this filtered character can also be added
$arrfiltrate =array ("'", ";", "union");
The URL to jump after the error, without filling the default previous page
$strgourl = "";
Whether the values in the array exist
function Funstringexist ($strfiltrate, $arrfiltrate) {
foreach ($arrfiltrate as $key = = $value) {
if (eregi ($value, $strfiltrate)) {
return true;
}
}
return false;
}
Merging $_post and $_get
if (function_exists (Array_merge)) {
$arrpostandget =array_merge ($http _post_vars, $http _get_vars);
}else{
foreach ($http _post_vars as $key = + $value) {
$arrpostandget []= $value;
}
foreach ($http _get_vars as $key = + $value) {
$arrpostandget []= $value;
}
}
Validation begins
foreach ($arrpostandget as $key = = $value) {
if (Funstringexist ($value, $arrfiltrate)) {
echo "";
if (empty ($strgourl)) {
echo "";
}else{
echo "";
}
Exit
}
}
?>
http://www.bkjia.com/PHPjc/629728.html www.bkjia.com true http://www.bkjia.com/PHPjc/629728.html techarticle PHP Tutorial/************************* Description: Determine whether the passed variable contains illegal characters such as $_post, $_get function: Anti-injection **************************///illegal to filter ...