A
Anonymous
Guest
You should turn register_globals = off this is a security risk having it on and I believe in future releases this won't even be an option.
Below will give you a good start at making sure that your variables don't have unexpected stuff inserted into them. The best way to do this includes some more advanced settings and installs using php filter http://us2.php.net/filter. However below should give you the generally idea to sanitize your post variables.
Form page:
submit page:
Below will give you a good start at making sure that your variables don't have unexpected stuff inserted into them. The best way to do this includes some more advanced settings and installs using php filter http://us2.php.net/filter. However below should give you the generally idea to sanitize your post variables.
Form page:
PHP:
<form method='post' action='submit.php'>
<input type='text' name='email'>
</form>
submit page:
PHP:
$email = htmlentities(strip_tags(stripslashes($_POST['email'])));
echo ($email);