"Chris W. Parker" wrote: > 10. Use htmlentities() on data that will be put through a SQL query to > prevent XSS attacks. http://php.net/htmlentities
How is it going to interact with MySQL FULLTEXT search SQL queries, where the characters ">" and "<" are in use as modifiers? -- Seks, seksić, seksolatki... news:pl.soc.seks.moderowana http://hyperreal.info { iWanToDie } WiNoNa ) ( http://szatanowskie-ladacznice.0-700.pl foReVeR( * ) Poznaj jej zwiewne kształty... http://www.opera.com 007 -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php