Preventing php injection in forms (if a user submits php code into a form)?

No. Use htmlspecialchars instead. Don't use addslashes .

Use htmlspecialchars before outputing anything provided by the user. But in this case, also make sure that you do not execute anything the user inputs. Do not use eval, include or require.

If you save the user data to a file, use readfile or file_get_contents+htmlspecialchars instead of include/require. If you're using eval, change it into echo and so on.

I cant really gove you an answer,but what I can give you is a way to a solution, that is you have to find the anglde that you relate to or peaks your interest. A good paper is one that people get drawn into because it reaches them ln some way.As for me WW11 to me, I think of the holocaust and the effect it had on the survivors, their families and those who stood by and did nothing until it was too late.

Preventing php injection in forms (if a user submits php code into a form)?

Related Questions

Form data into database: preventing SQL injection?

Rails: Adding to model after user submits form?

Preventing SQL injection using ONLY php?

Form with more submits and submiting by Enter?

Spot the place that submits the form in ASP .NET?

JQuery ajax form still submits WITH page refresh?