PHP Sanitize Database Input

Aug 27, 2013, by admin

Hi all today we are going to see how to sanitize and clean all incoming user data that is going to be used in a database because we can’t trust all users. Here I am going to share a function which sanitize all input data and remove the chances of code injection.

Function For Cleaning Input Data :

<?php
function sanitize_input_data($input_data) {
$input_data = trim(htmlentities(strip_tags($input_data,“,”)));
if (get_magic_quotes_gpc())
$input_data = stripslashes($input_data);
$input_data = mysql_real_escape_string($input_data);
return $input_data;
}
?>

Usage of sanitize_input_data function:

<?php
$bad_string = “Hi! <script src=’http://www.evilssite.com/bad_script.js’></script> It’s a good day!”;
$good_string = sanitize_input_data($bad_string);
echo $good_string;
//OUTPUT:: Hi! It’s a good day!
?>

Hope this post will be useful for you to get more updates like the page Bugtreat Technologies

Code css Database Free Hacking HTML PHP PHP Script Server simple web website

App development

CMS

Company news

E-commerce solutions

Internet

SEO

SMO

Technology

Templates

Web Design

Web Development

PHP Sanitize Database Input

Function For Cleaning Input Data :

Usage of sanitize_input_data function: