PHPµÄ±àдSQLÓï¾äʱ¶ÔÐèҪתÒå×Ö·ûµÄ´¦Àí
1. ¶ÔÓÚPHP magic_quotes_gpc=onµÄÇé¿ö£¬ ÎÒÃÇ¿ÉÒÔ²»¶ÔÊäÈëºÍÊä³öÊý¾Ý¿âµÄ×Ö·û´®Êý¾Ý×÷
addslashes()ºÍstripslashes()µÄ²Ù×÷,Êý¾ÝÒ²»áÕý³£ÏÔʾ¡£ Èç¹û´ËʱÄã¶ÔÊäÈëµÄÊý¾Ý×÷ÁËaddslashes()´¦Àí£¬
ÄÇôÔÚÊä³öµÄʱºò¾Í±ØÐëʹÓÃstripslashes()È¥µô¶àÓàµÄ·´Ð±¸Ü¡£ 2. ¶ÔÓÚPHP magic_quotes_gpc=off µÄÇé¿ö ±ØÐëʹÓÃaddslashes()¶ÔÊäÈëÊý¾Ý½øÐд¦Àí£¬µ«²¢²»ÐèҪʹÓÃstripslashes()¸ñʽ»¯Êä³ö
ÒòΪaddslashes()²¢Î´½«·´Ð±¸ÜÒ»ÆðдÈëÊý¾Ý¿â£¬Ö»ÊǰïÖúmysqlÍê³ÉÁËsqlÓï¾äµÄÖ´ÐС£ ²Î¿¼×ÊÁÏ: <PHP magic_quotes_gpcµÄÏêϸʹÓ÷½·¨>
Ïà¹ØÎĵµ£º
$URL
=‘
http
:
//xxx.xxx.xxx.xx/xx/xxx/top.php';
$post_data
[
'
clientname
'
]
=
"
test08
"
;
$post_data
[
'
clientpasswd
'
]
=
"
test08
"
;
$post_data
[
'
submit
'
]
=
"
¥í¥°¥¤¥ó
"
;
$referrer
=
""
;
// ......
<mce:script language=javascript><!--
var a=0;
// --></mce:script>
<?php
function func1()
{
$t="a=a+1;";
return $t."alert(a)";
}
?>
<?php
echo "<input type=button value='Sure' onclick=\"".func1()."\">";
?> ......
ÕâÁ½ÌìÒ»Ö±ÔÚ°ïÈË×ö¸öÈí¼þ¿ÉÊǰ³Ö»»áÓÃphp£¬php³ÌÐòµÄÔËÐÐÊÇ»ùÓÚApache·þÎñÆ÷µÄ£¬Ã»°ì·¨ ÒªÔËÐгÌÐò¾Í±ØÐëÔËÐзþÎñÆ÷Apache·þÎñÆ÷¿ÉÒÔÑ¡ÓÃ×é×°°æµÄ£¬ÏÂÃæ·ÖÏíÏÂÎÒµÄÅäÖ÷½·¨£¬ÓÃÒ»¸öСµÄÅú´¦Àí³ÌÐò¾Í¿ÉÒÔÍê³É¡£
ÏÂÃæ¾ÍÊÇÎÒµÄÅú´¦Àí³ÌÐò£º
@ ECHO OFF
copy d:\road\httpd-vhosts.conf c:\xampp\apache\conf\extra / ......
Ëæ×ÅWeb2.0µÄÉýλ¥ÁªÍøµÄ·¢Õ¹ÓÀ´ÐÂÒ»ÂÖµÄÈȳ±£¬ÓÉÓÚ»¥ÁªÍø±¾ÉíµÄ¿ìËÙ·¢Õ¹¡¢²»¶Ï´´ÐµÄÌØµã£¬¾ö¶¨ÁËÖ»ÓÐÒÔ×î¿ì¿ª·¢ËٶȺÍ×îµÍ³É±¾£¬²ÅÄÜȡʤ£¬²ÅÄÜʼÖÕ±£³ÖÒ»¸öÍøÕ¾µÄÁìÏÈÐÔºÍÎüÒý¸ü¶àµÄÍøÃñ¡£
»¥ÁªÍøµÄÆóÒµÉú´æºÍ¾ºÕùµÄºËÐÄÔÚÓÚ¼¼Êõ£¬¼¼Êõ/Ñз¢È˲ÅÓÀÔ¶ÊÇÕâЩÆóÒµ²»¿É»òȱµÄ¹Ø¼üÈËÎֻÓÐÓµÓÐ×ÊÉ ......
±ê×¼´úÂëÈçÏÂ:
<?php
...
?>
¶Ì±êǩģʽ(´ËģʽÐèÒªÐÞ¸ÄPHPÅäÖã¬ÈÃPHPÖ§³Ö¶Ì±êǩģʽ)£º
<?
...
?>
×¢ÊÍ£º
/* ...*/
//
#
ÆäËü£º
ÔÚphpÖÐÓÃ";"À´·Ö¸ôÓï¾ä¡£
Àý¾ä£º
<?php
echo "Hello World!"
?>
......