douba3378 2014-12-30 22:36
浏览 24

插入数据库后使用&textarea后缺少文本

I have a form where users can add a description with the post they are about to submit. I want the user to add whatever text they want in the textarea. When i was testing i came across this annoying error. Whenever i added & to the sentence the text after that just Disappeared. Example:

Input: This is a good day for a walk & i feel like a million bucks.

Ouput: This is a good day for a walk

This happens when i $_POST or $_GET variables. I thought it was magic_quotes_gpc but i checked in my php.ini file and it is off. I have no idea whats going on. And its not just & but other characters as well. Thank you

  • 写回答

1条回答 默认 最新

  • dongxuanjiao0795 2014-12-30 22:53
    关注

    You have to validate & sanitize your input. If you don't, it is extra easy to hack. Look into filter_var()

    In your case, you could get by with just: 

    $textareaData = htmlspecialchars($_POST['textarea']);

    But, ideally, you'll want to: 

    $textareaData = filter_var($_POST['textarea'], FILTER_SANITIZE_STRING);
    评论

报告相同问题?

悬赏问题

  • ¥15 在获取boss直聘的聊天的时候只能获取到前40条聊天数据
  • ¥20 关于URL获取的参数,无法执行二选一查询
  • ¥15 液位控制,当液位超过高限时常开触点59闭合,直到液位低于低限时,断开
  • ¥15 marlin编译错误,如何解决?
  • ¥15 有偿四位数,节约算法和扫描算法
  • ¥15 VUE项目怎么运行,系统打不开
  • ¥50 pointpillars等目标检测算法怎么融合注意力机制
  • ¥20 Vs code Mac系统 PHP Debug调试环境配置
  • ¥60 大一项目课,微信小程序
  • ¥15 求视频摘要youtube和ovp数据集