WordPress is the web's most popular CMS, but its dominance also makes it a target for attackers. Our eBook will show you how to:
Prevent costly exploits of core and plugin vulnerabilities
Repel automated attacks
Lock down your dashboard, secure your code, and protect your users
Course Of The Month
7 days, 20 hours left to enrollBecome a Premium Member and unlock a new, free course in leading technologies each month.
Solved
Regular expression to checking ...?
Posted on 2008-06-24
Hello group,
How can I avoid users from entering some specific characters in Form entries? characters such as & ^ % # @ and so on?
I don't know that much about Regular Expression but will appreciate it if you pass me some links to learn how to use it in PHP.
Regards.
How can I avoid users from entering some specific characters in Form entries? characters such as & ^ % # @ and so on?
I don't know that much about Regular Expression but will appreciate it if you pass me some links to learn how to use it in PHP.
Regards.
[X]
Welcome to Experts Exchange
Add your voice to the tech community where 5M+ people just like you are talking about what matters.
- Help others & share knowledge
- Earn cash & points
- Learn & ask questions
2-
2
4 Comments
$banned = array("#","^","%");
$text = "This is 20% of the total #number of ^carrots";
$string = str_replace($banned, "", $text);
If you echo string it would display;
This is 20 of the total number of carrots
Now this is a simple approach, regular expressions would be the best sollution if it got more advanced. If your trying make your forms safe from XSS attacks or SQL injection i'd suggest using alternate frameworks to assist you.
Hi CurtinProp,
You did point to something I always think of. As matter of fact, I've started PHP just few months ago and not sure what XSS attaks are. Would you please give me direction toward this concept? Any online resource or book would be great.
Thanks.
Cross-site scripting (XSS) is a type of computer security vulnerability typically found in web applications which allow code injection by malicious web users into the web pages viewed by other users. Examples of such code include HTML code and client-side scripts.
http://en.wikipedia.org/wiki/Cross-site_scripting
For books I suggest;
http://www.amazon.com/Cross-Site-Scripting-Attacks-Exploits/dp/1597491543/ref=pd_bbs_sr_1/104-1412087-4929535?ie=UTF8&s=books&qid=1177355137&sr=1-1
This book was written by industry experts and is the best reference.
He also has a blog which I also read; www.jeremiahgrossman.blogspot.com/
http://en.wikipedia.org/wiki/Cross-site_scripting
For books I suggest;
http://www.amazon.com/Cross-Site-Scripting-Attacks-Exploits/dp/1597491543/ref=pd_bbs_sr_1/104-1412087-4929535?ie=UTF8&s=books&qid=1177355137&sr=1-1
This book was written by industry experts and is the best reference.
He also has a blog which I also read; www.jeremiahgrossman.blogspot.com/
Featured Post
Question has a verified solution.
If you are experiencing a similar issue, please ask a related question
Generating table dynamically is the most common issue faced by php developers.... So it seems there is a need of an article that explains the basic concept of generating tables dynamically. It just requires a basic knowledge of html and little maths…
Developers of all skill levels should learn to use current best practices when developing websites. However many developers, new and old, fall into the trap of using deprecated features because this is what so many tutorials and books tell them to u…
This tutorial will teach you the core code needed to finalize the addition of a watermark to your image. The viewer will use a small PHP class to learn and create a watermark.
The viewer will learn how to create a basic form using some HTML5 and PHP for later processing.
Set up your basic HTML file. Open your form tag and set the method and action attributes.:
(CODE)
Set up your first few inputs one for the name and …
Suggested Courses
Course of the Month7 days, 20 hours left to enroll
729 members asked questions and received personalized solutions in the past 7 days.
Join the community of 500,000 technology professionals and ask your questions.