php - magic quotes
Prior to PHP 6 there was a feature
called magic quotes that was created
to help protect newbie
programmers from writing bad form processing
code. Magic quotes would
automatically escape risky form data that
might be used for SQL Injection with
a backslash \. The characters
escaped by PHP include: quote ', double quote
", backslash \ and NULL
characters.
However, this newbie protection proved to cause more problems than
it
solved and is not in PHP 6. If your PHP version is any version before 6
then
you should use this lesson to learn more about how magic quotes
can affect you.
If you received the message "Magic quotes are enabled"
then you should
definitely continue reading this lesson, if not feel free to
learn about it in
case you are developing for servers that might have quotes on
or off.
Comments
Post a Comment
Thank you for your Comment