Sanitizing $_POST input | WordPress.org

halben
(@halben)

10 years, 6 months ago

So I have the following code:

‘$fname = ($_POST[‘first_name’]);’

to

‘$fname = esc_attr($_POST[‘first_name’]);’ ??

—————————————————–

$email = $_POST[‘user_email’];

to

$email = esc_url_raw($_POST[‘user_email’]); ??

Is the above correct?
Should I use WordPress sanitize_*() class helper functions or esc_attr()?

Viewing 1 replies (of 1 total)

x500.net
(@x500)

10 years, 6 months ago

I’d rather recommend to use filters functions designed for sanitization.

You may also find php.net useful, especially part – Sanitize filters.

Viewing 1 replies (of 1 total)

The topic ‘Sanitizing $_POST input’ is closed to new replies.

Tags

sanitize

In: Fixing WordPress
1 reply
2 participants
Last reply from: x500.net
Last activity: 10 years, 6 months ago
Status: not resolved

Topics

Topics with no replies

Non-support topics

Resolved topics

Unresolved topics

All topics