PHPÖÐstripslashesºÍaddslashesµÄʹÓÃ

ÏòmysqlдÈëÊý¾Ýʱ£¬È磺mysql_query("update tableName set `title`='goaler's blog'");
¡¡¡¡Õâ¸öʱºò£¬PHP½«»á±¨´í£¬ASPÖд¦ÀíʱҲһÑù¡£
¡¡¡¡ÒòΪÊý¾Ý¿â¶Ôµ¥ÒýºÅ¹ýÃô¡£
¡¡¡¡ASPÖÐÐèÒª½øÐÐreplace("'","''",str)£»
¡¡¡¡¶øPHPÖÐÔò¿ÉÒÔÖ±½ÓʹÓÃaddslashes¡£
¡¡¡¡ASPÎÊÌâÕâÀïÔݲ»¿¼ÂÇ£¬±¾ÎÄҪ˵µÄÊÇPHPÏà¹ØµÄstripslashesºÍaddslashes¡£
¡¡¡¡PHP¿¼Âǵ½Æ䰲ȫÐÔ£¬ÒýÈëÁËmagic_quotes_gpc = On/Off Õâ¸ö²ÎÊý£¬¿ÉÒÔÔÚ²»×öÈκδ¦ÀíµÄÇé¿öϾÍÖ±½Ó½«º¬Óе¥ÒýºÅµÄÊý¾Ý²åÈëÊý¾Ý¿âÖС£Èç¹ûmagic_quotes_gpc = Off£¬ÐèÒª¿¼Âǵ¥ÒýºÅµÄÎÊÌâÁË£¬²»ÄÜһζµØÐÅÈÎÆäÔËÐл·¾³¡£
¡¡¡¡µ±magic_quotes_gpc = Onʱ£¬Ê¹ÓÃaddslashes()´¦ÀíºóµÄÊý¾ÝÔÚÊý¾Ý¿âÖн«ÒÔ\'ÐÎʽ±£´æ£¬Èç¹û´Ëʱֱ½ÓÊä³öµÄ»°£¬¾Í»á·¢ÏÖ±È×Ô¼ºÔ­ÏÈÊäÈëµÄÄÚÈݶàÁ˸ö£¨·´Ð±¸Ü£©\£¬Õâʱ¾ÍÐèÒªÓõ½stripslashes()ÁË£¬ËüÄÜ°Ñaddslashes()´¦Àíʱ×Ô¶¯¼ÓÉÏÈ¥µÄ£¨·´Ð±¸Ü£©\È¥µô¡£Õâ¸úÇø±ðÓÚstr_replace("\", "",$str)²»Í¬¡£
¡¡¡¡µ±magic_quotes_gpc = Offʱ£¬Ê¹ÓÃaddslashes()´¦ÀíºóµÄÊý¾ÝÔÚÊý¾Ý¿âÖн«ÒÔ'ÐÎʽ±£´æ£¬²»´æÔÚÉÏÃæ˵µÄÓÐ\µÄÎÊÌ⣬addslashes()Æðµ½²åÈëÊý¾Ý²»³ö´íµÄ×÷Óã¬Èç¹û´Ëʱֱ½ÓÊä³öµÄ»°£¬Êý¾ÝÕý³£¡£²»ÐèÒªÔÙÓÃstripslashes()¡£
¡¡¡¡addslashes()ºÍstripslashes()ÕýºÃÊÇÏà·´µÄ£¬addslashes()¼Ó¸ö£¨·´Ð±¸Ü£©\£¬stripslashes()È¥¸ö£¨·´Ð±¸Ü£©\¡£
¡¡¡¡µ±magic_quotes_gpc = Onʱ£¬ÏµÍ³»á×Ô¶¯´¦Àíµ¥ÒýºÅµÈÎÊÌ⣬Óò»ÓÃaddslashes()ºÍstripslashes()¶¼Ã»¹Øϵ£¬µ«ÊÇÈç¹ûÌí¼ÓÊý¾ÝʱÓÃÁËaddslashes()£¬ÄÇôÏÔʾÊý¾Ýʱ±ØÐëÒªstripslashes()
¡¡¡¡µ±magic_quotes_gpc = Offʱ£¬ÏµÍ³²»»á´¦Àíµ¥ÒýºÅµÈÎÊÌ⣬ËùÒÔ²åÈëÊý¾Ýʱ±ØÐëҪʹÓÃaddslashes()£¬ÏÔʾÊý¾ÝʱÔò²»ÐèҪʹÓÃstripslashes()¡£
¡¡¡¡¼ÈÈ»ÓÐÁË·ÖÎö£¬×ö³ÌÐòʱҪÔõô°ìÄØ£¿¸ù¾ÝÒÔÉÏÁ½ÖÖÇé¿ö£¬¿ÉµÃ£º
¡¡¡¡²»¹Ümagic_quotes_gpcÊÇOn»¹ÊÇOff£¬ÔÛÌí¼ÓÊý¾Ýʱ¶¼ÓÃaddslashes()£¬µ±Onʱ£¬±ØÐëʹÓÃstripslashes()£¬OffʱÔò²»ÄÜÓÃstripslashes()¡£
¡¡¡¡ÈçºÎÅжÏOn»¹ÊÇOffÄØ£¿ÓÃget_magic_quotes_gpc()¡£