[RESOLVED] [Ajax] encodeURIComponent and urldecode ...........

Hi.
I'm wondering if I do the right think
using encodeURIComponent to send
input data with ajax and urldecode before
inserting the data into the Db ?

Thanks in advance 😉

Bye.

Well you also want to guard against SQL injection.

In a PHP script, received url values in the $_GET array are already urldecoded.

Thanks for the ready reply.

Just a thing I don't understand
If I use ajax with encodeURIComponent
to send a post value like this:

?èàò%&=string

without using urldecode I get
a string like this (in the DB ):

%3F%C3%A8%C3%A0%C3%B2%25%26%3Dstring

while if I send a normal post value
without using urldecode I get
a string like this (in the DB ):

?èàò%&=string

I don't see the point 😕

Could you explain me, please ?

Bye

Well you also want to guard against SQL injection.

Thanks for the tip.

Before putting the data into the Db
I do
data validation
real_escape_string
data filter against cross-site scripting (XSS) attacks

Could you explain me, please ?

I was using encodeURIComponent twice 😉

Bye.