Marc 'HE' Brockschmidt <he@ftwca.de> writes: > Miguel Gea Milvaques <xerakko@debian.org> writes: >> function sanitizeString($string) { >> $string = str_replace("'", "", $string); >> + $string = str_replace("--", "", $string); >> $string = str_replace("<", "", $string); >> $string = str_replace(">", "", $string); >> $string = str_replace("/*", "", $string); >> $string = str_replace("*/", "", $string); >> $string = str_replace("\"", "", $string); >> - $string = str_replace("--", "", $string); > [Patch is reversed] > > Erm, this isn't really a fix. You still get one of the replaced > character combinations if you use '\--'. Wouldn't it be more reasonable Argh, I meant '\--"'. Marc -- BOFH #415: Maintence window broken
Attachment:
pgpChodDOAexx.pgp
Description: PGP signature