<?php
$my_name='&&&&';
//echo substr(xml_entities($my_name),0,135);
ECHO xml_entities($my_name);
function xml_entities($string) {
return strtr(
$string,
array(
"<" => "",
">" => "",
'"' => "",
"'" => "",
"&" => "",
"|" => "",
"-" => "",
"–" => "",
":" => "",
"Ⅱ" => "2",
)
);
}
?>所谓SQL注入,就是通过把SQL命令插入到Web表单递交或输入域名或页面请求的查询字符串,最终达到欺骗服务器执行恶意的SQL命令。我们永远不要信任用户的输入,我们必须认定用户输入的数据都是不安全的,我...
apache在windows环境设置站点目录的时候需要设置给网站目录设置USER的读写修改删除权限,否则站点会开设不成功,设置方法:如下图所示:...
$conn=new sqlhelper;for ($i = 0; $i <1000 ; $i++) {$sql="insert into system_user(user_shenfe...
需要用到PHP自带函数chr()方法如下:$string=str_replace(chr(0x01),"",$string);...
<?php //设置cookie setcookie("user_name", "frank", time()+3600); /...
<?php function xml_entities($string) { //过滤emod $ts_zifu= json_encode($st...
