Author: arias51, Posted: Fri Aug 14, 2009 4:29 am Post subject: Code to allow quotes " "
I have two modules that do not allow posting of Double or Single quotes " ' (possibly other characters as well). I fixed this on another module a loooonnnnngggg time ago, but can't remember what the code is anymore.
Can someone help?
Author: Evaders99, Posted: Fri Aug 14, 2009 3:35 pm Post subject:
Use addslashes or the database-specific - mysql_real_escape_string
Author: arias51, Posted: Mon Aug 17, 2009 9:55 am Post subject:
Is keeping magic quotes on considered a security flaw? I noticed it was shut off on my server.
Author: Evaders99, Posted: Tue Aug 18, 2009 5:25 pm Post subject:
magic_quotes was a safeguard for older scripts. It is not recommend anymore and is being deprecated. I don't know of any active exploits against patched systems. I would only recommend it on if you are running very old code.
Author: arias51, Posted: Wed Aug 19, 2009 10:51 am Post subject: