Sanitize user inputs using php

Posted by bput4all on October 7, 2012 · 11 Comments 

function cleaninput($input) { $search = array( ‘@<script[^>]*?>.*?</script>@si’, // Strip out javascript ‘@<[\/\!]*?[^<>]*?>@si’, // Strip out HTML tags ‘@<style[^>]*?>.*?</style>@siU’, // Strip style tags properly ‘@<![\s\S]*?–[ \t\n\r]*>@’ // Strip multi-line comments ); $output = preg_replace($search, ”, $input); return $output; } function sanitize($input) { if (is_array($input)) { foreach($input as $var=>$val) { $output[$var] = sanitize($val); } } else { … Continue reading

Filed under php · Tagged with , , , , , ,