diff options
author | cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8> | 2005-11-06 17:14:25 +0000 |
---|---|---|
committer | cookie <cookie@29ba0400-6e00-0410-a75a-ca02368028f8> | 2005-11-06 17:14:25 +0000 |
commit | 866c47ec603595e8fe67da5f0e5d162a70b1f7b4 (patch) | |
tree | ef2b85462576150f017ba6bd53ace13dc60dc510 /www-ssl/inc/secure.php | |
parent | fbc8e11b91b0565ae5d23472fc4e5bfc7d879939 (diff) |
move files
git-svn-id: svn://svn.cccv.de/engel-system@20 29ba0400-6e00-0410-a75a-ca02368028f8
Diffstat (limited to 'www-ssl/inc/secure.php')
-rwxr-xr-x | www-ssl/inc/secure.php | 32 |
1 files changed, 32 insertions, 0 deletions
diff --git a/www-ssl/inc/secure.php b/www-ssl/inc/secure.php new file mode 100755 index 00000000..786c18a6 --- /dev/null +++ b/www-ssl/inc/secure.php @@ -0,0 +1,32 @@ +<?php +//soll dein funktion entahlten die alle übergebenen parameter überprüft +//'`'" + +foreach ($_GET as $k => $v) +{ + $v = htmlspecialchars($v); + $v = mysql_escape_string($v); +// $v = htmlentities($v); + if (preg_match('/([\"`])/', $v, $match)) + { + print "sorry get has illegal char '$match[1]'"; + exit; + } + $_GET[$k] = $v; + echo "GET $k=\"$v\"<br>"; +} + +foreach ($_POST as $k => $v) +{ + $v = htmlspecialchars($v); + $v = mysql_escape_string($v); +// $v = htmlentities($v); + if (preg_match('/([\'"`\'])/', $v, $match)) { + print "sorry post has illegal char '$match[1]'"; + exit; + } + $_POST[$k] = $v; + echo "POST $k=\"$v\"<br>"; +} + +?> |