阻止sql注入 

function clean($input)
{
  if (is_array($input)) {
    foreach ($input as $key => $val) {
      $output[$key] = clean($val);
      // $output[$key] = $this->clean($val);
    }
  } else {
    $output = (string) $input;
    // if magic quotes is on then use strip slashes
    if (get_magic_quotes_gpc()) {
      $output = stripslashes($output);
    }
    // $output = strip_tags($output);
    $output = htmlentities($output, ENT_QUOTES, 'UTF-8');
  }// return the clean text
  return $output;
}

  

posted on 2017-06-06 17:17  泪滴  阅读(111)  评论(0编辑  收藏  举报

Powered by: 博客园 Copyright © 2024 泪滴
Powered by .NET 8.0 on Kubernetes