Code

Strip Tags & Protect Against Injection Attacks

Whilst this is not a perfect way to protect against attacks, it is a step.

function clean_input($input) {
	// note, needs a MySQL connection
	$clean = strip_tags($input);
	$cleaner = mysql_real_escape_string($clean);
	
	return $cleaner;
}

Best used wrapped around a string. e.g. clean_input($string);

Posted at 3:01 on 2 th July 2009

This blog is here to throw code snippets, either what I regularly reuse, or that interest me at the time of making them. You won't find any big writings here. If you are interested in the motivations behind this and how it was made, please read this article.

You may use any of this source code as you wish, without attribution (although, it'd be nice.) I do however reserve no responsibility for it's quality or it's correctness. If you spot a problem, tell me and I will fix it.

Subscribe to the RSS Feed

Problem? Tell me.

Code a selection of code snippets published by Nick Charlton

Strip Tags & Protect Against Injection Attacks