244
edits
Update:Archive/1.0/Developers: Difference between revisions
m
→/core/inc_global.php
| Line 321: | Line 321: | ||
====/core/inc_global.php==== | ====/core/inc_global.php==== | ||
* [74] [79] can stripslashes() be used in place of str_replace()? | * [74] [79] can stripslashes() be used in place of str_replace()? (alanjstr says: we need to come up with a list of when to strip and what to strip. This is different for php variables and database entry) | ||
* strip_tags is not 100% safe; it can be fooled. Perhaps consider kses | * strip_tags is not 100% safe; it can be fooled. Perhaps consider kses | ||
* [86] strtolower() is unnecessary | * [86] strtolower() is unnecessary | ||