i thought php had a built in function that stripped out all potentially dangerous character out of a string.. its easy enough to implement.. i just thought i saw it as a function.. if there is one could you tell me the name of it.
thanks in advance
jeff
escapeshellcmd()
In form input to nullify any html coding input, use:
htmlspecialchar($string)
'&' (ampersand) becomes '&'
'"' (double quote) becomes '"'
'<' (less than) becomes '<'
'>' (greater than) becomes '>'
Hope it helps.
Jim
thanks.. i forgot the escape shell function.
jsp
