","{","}","[","]",",","'"); $arr_kodu = array("#","$","!",""","%","^","?","_","-","+","|","<",">","{","}","[","]",",","'"); return strip_tags(mysql_real_escape_string(str_replace($arr_simboliu,$arr_kodu,htmlspecialchars(trim($txt))))); } // The script blocks out any dangorous simbols, and replaces them with an code. also protects mysql database. ## We need to put it on every GET, POST, COOKIE, SESSION and SERVER methods. if(isset($_GET)){ foreach($_GET as $key=>$value) { $_GET[$key]=filter($value); } } if(isset($_POST)){ foreach($_POST as $key=>$value) { $_POST[$key]=filter($value); } } if(isset($_SESSION)){ foreach($_SESSION as $key=>$value){ $_SESSION[$key]=filter($value); } } if(isset($_COOKIE)){ foreach($_COOKIE as $key=>$value){ $_COOKIE[$key]=filter($value); } } if(isset($_SERVER)){ foreach($_SERVER as $key=>$value){ $_SERVER[$key]=filter($value); } } ?>