Hi - I want "sanitize" my form submissions somehow so as to prevent any malicious code being sent. I've read up on it a bit and I think adding some simple code to strip out < and > brackets should do the trick, but I'm not sure exactly how to go about it or where to put it.

I found a script that should do the job (below) but I'm mostly just unclear where to put in within the myriad of JS files etc.

Thanks in advance for your help!
Chris



function clean($code)
{
$strip = array(
'<' => '&lt;',
'>' => '&gt;'
);

return strtr($code, $strip);
}

.js scripts can be spoofed so it's best to handle this with php and pdo statements if your using MySql.

Thanks Eric -
any insight to where a good place to include this would be?

Your going to replace the myformname.php with your own myformname.php with all the custom code to process the $_POST['myvariablename'];