search

Home  >  Article  >  Backend Development  >  Examples of PHP filtering posts and getting sensitive data

Examples of PHP filtering posts and getting sensitive data

WBOY
WBOYOriginal
2016-07-25 08:57:491257browse
  2. /**
  3. * Filter posts in batches and get sensitive data
  4. * by bbs.it-home.org
  5. */
  7. if (get_magic_quotes_gpc()) {
  8. $_GET = stripslashes_array($_GET);
  9. $_POST = stripslashes_array($_POST);
  10. }
  12. function stripslashes_array(&$array) {
  13. while(list($key,$var) = each($array)) {
  14. if ($key != 'argc' && $key != 'argv' && (strtoupper($key) != $key || ''.intval($key) == "$key")) {
  15. if (is_string($var)) {
  16. $array[$key] = stripslashes($var);
  17. }
  18. if (is_array($var)) {
  19. $array[$key] = stripslashes_array($var);
  20. }
  21. }
  22. }
  23. return $array;
  24. }
  25. //--------------------------
  26. // 替换HTML尾标签,为过滤服务
  27. //--------------------------
  28. function lib_replace_end_tag($str)
  29. {
  30. if (empty($str)) return false;
  31. $str = htmlspecialchars($str);
  32. $str = str_replace( '/', "", $str);
  33. $str = str_replace("\", "", $str);
  34. $str = str_replace(">", "", $str);
  35. $str = str_replace("<", "", $str);
  36. $str = str_replace("<SCRIPT>", "", $str); </li> <li>$str = str_replace("</SCRIPT>", "", $str);
  37. $str = str_replace("<script>", "", $str); </li> <li>$str = str_replace("</script>", "", $str);
  38. $str=str_replace("select","select",$str);
  39. $str=str_replace("join","join",$str);
  40. $str=str_replace("union","union",$str);
  41. $str=str_replace("where","where",$str);
  42. $str=str_replace("insert","insert",$str);
  43. $str=str_replace("delete","delete",$str);
  44. $str=str_replace("update","update",$str);
  45. $str=str_replace("like","like",$str);
  46. $str=str_replace("drop","drop",$str);
  47. $str=str_replace("create","create",$str);
  48. $str=str_replace("modify","modify",$str);
  49. $str=str_replace("rename","rename",$str);
  50. $str=str_replace("alter","alter",$str);
  51. $str=str_replace("cas","cast",$str);
  52. $str=str_replace("&","&",$str);
  53. $str=str_replace(">",">",$str);
  54. $str=str_replace("<","<",$str);
  55. $str=str_replace(" ",chr(32),$str);
  56. $str=str_replace(" ",chr(9),$str);
  57. $str=str_replace(" ",chr(9),$str);
  58. $str=str_replace("&",chr(34),$str);
  59. $str=str_replace("'",chr(39),$str);
  60. $str=str_replace("
    ",chr(13),$str);
  61. $str=str_replace("''","'",$str);
  62. $str=str_replace("css","'",$str);
  63. $str=str_replace("CSS","'",$str);
  65. return $str;
  66. }
复制代码


Statement:
The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn
Previous article:PHP implementation code of Google PR valueNext article:PHP implementation code of Google PR value

Related articles

See more