Re: [PHP-DB] [suspicious - maybe spam] How to deal with ...?

2005-05-05 Thread Chris
The *proper* way to handle this would be to individually urlencode() each variable, then use htmlspecialchars() (or htmlentities()) on the entire URL. (example below). Given that, most people don't bother with the htmlspecialchars step. $sURL = $_SERVER['PHP_SELF'].'?familia03=' .

Re: [PHP-DB] [suspicious - maybe spam] How to deal with ...?

2005-05-05 Thread Firan Corneliu
Another method could be the base64_encode(),base64_decode(). Something like this : echo(codigo:. $row['codigo'] . | familia: stronga href=\.$_SERVER['PHP_SELF'].?familia03=.base64_encode($row['familia']).cat02=$cat02cat03=$cat03cat04=$cuadro04\. $row['familia']./a/strongbr \n); Hope it helps,

RE: [PHP-DB] [suspicious - maybe spam] How to deal with ...?

2005-05-05 Thread Bastien Koert
convert them to ascii characters, then you don't have the issue bastien From: Ardilla Roja [EMAIL PROTECTED] Reply-To: Ardilla Roja [EMAIL PROTECTED] To: php-db@lists.php.net Subject: [PHP-DB] [suspicious - maybe spam] How to deal with ...? Date: Wed, 4 May 2005 20:05:51 -0700 Hi, I'm working in