neosubhamoy/neosubhamoy-portfolio
1
1
Fork 0
mirror of https://github.com/neosubhamoy/neosubhamoy-portfolio.git synced 2025-12-19 21:43:06 +05:30
Code Issues Wiki Activity

(feat): added sql injection prevention in search keyword

Browse Source
This commit is contained in:
Subhamoy Biswas
2023-12-10 19:00:39 +05:30
parent 2c51a048f6
commit 6a7e646df2
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
htdocs/core/handle_search.php
View File

@@ -2,17 +2,18 @@
require '../../connection.php'; require '../../connection.php';
require 'query_functions.php'; require 'query_functions.php';
function input_filter($data){ function input_filter($conn, $data){
$data = trim($data); $data = trim($data);
$data = stripslashes($data); $data = stripslashes($data);
$data = htmlspecialchars($data); $data = htmlspecialchars($data);
$data = mysqli_real_escape_string($conn, $data);
return $data; return $data;
} }
if ($_SERVER['REQUEST_METHOD'] === 'POST') { if ($_SERVER['REQUEST_METHOD'] === 'POST') {
if (isset($_POST['keyword'])) { if (isset($_POST['keyword'])) {
$keyword = $_POST['keyword']; $keyword = $_POST['keyword'];
$keyword = input_filter($keyword); $keyword = input_filter($conn, $keyword);
$results_array = [ $results_array = [
$results_projects = fetch_search_results_projects($conn, $keyword), $results_projects = fetch_search_results_projects($conn, $keyword),
$results_socials = fetch_search_results_socials($conn, $keyword), $results_socials = fetch_search_results_socials($conn, $keyword),