Why are $_POST variables getting escaped in PHP?

by

You probably have magic quotes enabled on the Linux server: magic_quotes

When magic_quotes are on, all ‘ (single-quote), ” (double quote), \ (backslash) and NUL’s are escaped with a backslash automatically.

They’re a good thing to disable, as they are going to be removed from PHP 6 onwards anyway. You should also be able to disable them inside your script: set-magic-quotes-runtime You can’t deactivate the part of magic_quotes responsible for escaping POST data during runtime. If you can, disable it in php.ini. If you can’t do that, do a check whether the magic_quotes are enabled, and do a stripslashes() on any content you fetch from POST:

if (get_magic_quotes_gpc())  
 $my_post_var = stripslashes($_POST["my_post_var"]);

More Related Contents:

  1. How do I post multiple parameters to a URL
  2. Javascript POST not working – Sending Javascript array to PHP
  3. Pass data from jQuery to PHP for an ajax post
  4. When do I use PHP_EOL instead of \n and vice-versa ? Ajax/Jquery client problem
  5. Jquery AJAX post to PHP
  6. How do you use variables within $_POST? [closed]
  7. Tagging systems [closed]
  8. How to use this code my wordpress theme
  9. Multiple inputs with same name through POST in php
  10. curl POST format for CURLOPT_POSTFIELDS
  11. Submitting a multidimensional array via POST with php
  12. How to upload multiple files using PHP, jQuery and AJAX
  13. Does $_SERVER[‘HTTP_X_REQUESTED_WITH’] exist in PHP or not?
  14. PHP some $_POST values missing but are present in php://input
  15. Ajax LARAVEL 419 POST error
  16. How to populate second dropdown based on selection of first dropdown using jQuery/AJAX and PHP/MySQL?
  17. How to search for slash (\) in MySQL? and why escaping (\) not required for where (=) but for Like is required?
  18. Posting multidimensional array with PHP and CURL
  19. How to call a php script/function on a html button click
  20. PHP header() redirect with POST variables [duplicate]
  21. Jquery – Uncaught TypeError: Cannot use ‘in’ operator to search for ‘324’ in
  22. How to switch from POST to GET in PHP CURL
  23. Unserialize PHP Array in Javascript
  24. Do I need to escape backslashes in PHP?
  25. How to rotate image and save the image
  26. Setting POST variable without using form
  27. How to remove backslash on json_encode() function?
  28. boolean variables posted through AJAX being treated as strings in server side
  29. PHP: Escape RegEx pattern to prevent being applied?
  30. How to safely output HTML from a PHP program?

Leave a Comment