xxxxxxxxxx
function secure_input($param) {
$param = trim($param);
$param = stripslashes($param);
$param = htmlspecialchars($param);
$param = htmlentities($param);
$param = mysqli_real_escape_string($param);
return $param;
}
$username = secure_input($_POST['username']);
$email = secure_input($_POST['email']);
xxxxxxxxxx
<?php
function sanitize($stringToSanitize) {
return addslashes(htmlspecialchars($stringToSanitize));
}
// You can just use the codes themselves instead of creating a function as:
echo addslashes(htmlspecialchars($stringToSanitize));
?>
xxxxxxxxxx
$input = $_POST['input']; // Assuming the input is received through a POST request
$sanitizedInput = filter_var($input, FILTER_SANITIZE_STRING);
// Use the sanitized input in your code
// ...