Queries ilke "C#" and "C++" get stripped down to "C" in my search form?

steveryan

Hello all

I hope someone can help me with this.

My website uses PHP, HTML and MySQL. When I search for "C#" or "C++" using my search form, it gets stripped down to "C". Note I've checked my sanitization scripts and they are not the cause.

Does anyone know what might be causing this and what I can do to prevent it?

Thanks!

jerdo

Is the form action GET for your search?

bradgrafelman

Unless the search form uses Javascript to build the query URL, and you have a simple <form> which submits data to a PHP script (GET or POST - doesn't matter which method), then I can think of two possible sources of this error: 1) your PHP data handling code, and 2) an Apache security module that scans/sanitizes incoming request data automatically (e.g. before it gets handed off to your PHP scripts).

Do you ever modify the $GET or $POST array (whichever is appropriate) directly? If not, have you done a [man]print_r/man on the appropriate array itself to see what the data looks like when the PHP script received it?

jgetner

does your script escape special chars? such as mysql or html as both ++ and # are special chars

dalecosp

No big deal, dude; C is much better than C++ or C# anyway.

Unless you're playing in A Major. 😃

Please excuse my trolling and do what Brad G sez 😉