Comments on: PHP/MySQL- Escape All POST Or GET Variables For MySQL INSERT http://www.brightcherry.co.uk/scribbles/phpmysql-make-all-post-or-get-variables-safe-for-mysql-insert/ Sat, 21 Jan 2012 16:15:38 +0000 hourly 1 http://wordpress.org/?v= By: Richard Cummings http://www.brightcherry.co.uk/scribbles/phpmysql-make-all-post-or-get-variables-safe-for-mysql-insert/#comment-1779 Richard Cummings Thu, 31 Mar 2011 17:29:55 +0000 http://www.brightcherry.co.uk/scribbles/?p=199#comment-1779 I was looking to escape all post data in one shot. This just did the trick. Thx, Richard I was looking to escape all post data in one shot. This just did the trick. Thx, Richard

]]> By: guru http://www.brightcherry.co.uk/scribbles/phpmysql-make-all-post-or-get-variables-safe-for-mysql-insert/#comment-1083 guru Wed, 15 Sep 2010 07:33:42 +0000 http://www.brightcherry.co.uk/scribbles/?p=199#comment-1083 nice method (with references) foreach($_POST as $key=>&$value) { $value = mysql_real_escape_string($value); } or your one: foreach(array_keys($_POST) as $key) { $clean[$key] = mysql_real_escape_string($_POST[$key]); } Is ugly here is cleaner :) foreach($_POST as $key=>$value) { $clean[$key]=mysql_real_escape_string($value); } nice method (with references)
foreach($_POST as $key=>&$value) {
$value = mysql_real_escape_string($value);
}

or your one:
foreach(array_keys($_POST) as $key)
{
$clean[$key] = mysql_real_escape_string($_POST[$key]);
}
Is ugly
here is cleaner
:)
foreach($_POST as $key=>$value) {
$clean[$key]=mysql_real_escape_string($value);
}

]]>