Hey
I'm trying to write out a script that will prevent variables from containing malicious code but I'm not too sure how to go around it except for writing out a huge list of stristr() functions in if-else statements for each php and SQL function.
anyone know a better way/
