PHP Remove " In GET

Question

I simply need a GET Variable that doesn't have any " marks. ' marks are okay, but " aren't. What do I need to do to fix that? And no, changing the " marks to ' do not work. I must do this because the GET is a URL link, so the URL link must be within two " quotes. If a " mark is within those lines, it will cause the link to stop short.

' . $_GET["test"] . '

My Code

<?php
$user = str_replace($_GET["user"], "\"", "'");
$user = "" . $user . "";
?>

<iframe src="https://domain.tld/?user=' . $user . '&password=' . $_GET['password'] . '&version=99" height="30" width="500"></iframe>

There is nothing here that needs fixing. Can you be more specific? — Jon, Feb 24 '13 at 02:07
You already wrote that. Try another way. *What* is it can't have *quotes*? *Why*? — Jon, Feb 24 '13 at 02:09
Because it is in a URL link, so the URL link must be within two " quotes. If a " mark is within those lines, it will cause the link to stop short. — user2092939, Feb 24 '13 at 02:09
Although I've answered your question, you've not worded it very descriptively. Please consider adding more detail in the future. — Christian Stewart, Feb 24 '13 at 02:10
Then look here: http://stackoverflow.com/questions/129677/whats-the-best-method-for-sanitizing-user-input-with-php. — Jon, Feb 24 '13 at 02:10
@ChristianStewart: You have answered his question, but your answer is still not 100% correct. Exactly because there was not enough information to determine the correct answer. — Jon, Feb 24 '13 at 02:11
Quite right, I have still answered the question "How do I remove " marks from a GET variable" — Christian Stewart, Feb 24 '13 at 02:11
You reposted the question under a different username and said that we did not answer it... This is NOT acceptable behavior under SO rules and etiquette.. Needless to say I have expanded my answer to be a full solution. — Christian Stewart, Feb 24 '13 at 02:42

Christian Stewart · Answer 1 · 2013-02-24T02:41:31.733

4

You can simply fetch the $_GET[''] variable and use a find and replace to replace all the "

Example:

$myVar = str_replace($_GET["myVar"], "\"", "'");
$myStringWithVar = "" . $myVar . "";

Full example:

<iframe src="https://domain.tld/?user=<?php echo
str_replace($_GET["myVar"], "\"", "'");  ?>&password=' .
$_GET['password'] . '&version=99" height="30" width="500"></iframe>

Please do not ask the same question again later on under a different username (as you have done)

edited Feb 24 '13 at 02:41

answered Feb 24 '13 at 02:07

Christian Stewart

15,217
20
82
139

And how exactly do I do that? – user2092939 Feb 24 '13 at 02:08
$user = str_replace($_GET["user"], "\"", "'"); $user = "" . $user . ""; – user2092939 Feb 24 '13 at 02:14
Yes, you would use that... You asked how to fix the variable in that little itty bit of code you gave us, and this is my interpretation of what you were asking. – Christian Stewart Feb 24 '13 at 02:15
And this to display it? ' . $user . ' – user2092939 Feb 24 '13 at 02:15
To display it you will want to type echo $myVar. – Christian Stewart Feb 24 '13 at 02:16
Still not working. I have What am I doing wrong? – user2092939 Feb 24 '13 at 02:21
$user is not a variable... Please post more code, I can't see what you're doing. – Christian Stewart Feb 24 '13 at 02:22
I added the code involving the GET Variable. – user2092939 Feb 24 '13 at 02:24
Christian, tutoring is not a good use of time for that user. (Lots of deleted questions, banned accounts, more trivial inquiries to come the more you feed a [help vampire](http://meta.stackexchange.com/questions/19665/the-help-vampire-problem).) – mario Feb 24 '13 at 02:33
Is there a better place for blood? Im hungry. – user2092939 Feb 24 '13 at 02:37
I like to help @mario Also you can't reference PHp things from html – Christian Stewart Feb 24 '13 at 02:37

PHP Remove " In GET

1 Answers1