- 1, using the json save array, you do not need to use when reading the eval.
|
- 2, must be used for local eval, must strictly handle user data (whitelist, blacklist).
|
- 3, comprises a controllable single quotes string code, addslashes escape (addslashes, Sum quotes, htmlspecialchars, htmlentities, mysql_real_escape_string) prior to insertion.
|
- 4, to renounce the use of e preg_replace modifiers, using the preg_replace_callback () Replace (preg_replace_callback ()).
|
- The object 5, must be used if the e preg_replace modifier, wrapped in single quotes certainly matched the regular (regular preg_replace +).
|