I have a php form thing where what people enters is printed on the next page, but I’m worried about them entering malicious php code in the form which could be dangerous right? Any idea how I’d prevent PHP being entered/injected?
@pyroSep 18.2005 — #pointfiftyae is correct, unless you run the code through the eval function, it won't get parsed. You might want to watch out for JavaScript or SQL injection, depending on your circumstances, though.
@N00bletauthorSep 18.2005 — #Yeah, you're right. Thanks and sorry, I only checked HTML and not PHP. And under what circumstances could Javascript and SQL injections be dangerous?