PHP Code:
$input = html_special_chars(trim($_POST['input']));
Backend Development
How to prevent form hijacking in PHP?
Submitted by greatlogix, 22-02-2016, 03:38 PM, Thread ID: 18592
Thread Closed
RE: How to prevent form hijacking in PHP? Sanitize inputs by using the trim($string) function to strip leading and trailing whitespace and the html_special_chars($string) function to escape HTML special characters by converting to HTML entities.
And,properly escape the string using mysql_real_escape_string before substituting into your SQL query.
Sanitize inputs by using the trim($string) function to strip leading and trailing whitespace and the html_special_chars($string) function to escape HTML special characters by converting to HTML entities.
And,properly escape the string using mysql_real_escape_string before substituting into your SQL query.