PHP mysqli - sanitize user input data with UTF-8 input

Asked Jun 25 '15 at 18:04

Active Jun 25 '15 at 18:04

Viewed 22 times

User input will be another language with English. So I want to sanitize data before putting it on mysql database.

So here is my code:

mysqli_set_charset($conn,"utf8");
function sanitize_data($data) {
    global $conn;
    $output = '';
    if(isset($data)) {
        $output = mysqli_real_escape_string($conn, $data);
    }
    return $output;
}

Is there any way to make it more sanitized? Website will be public forum/blog type. Anyone can write if they are registered.

asked Jun 25 '15 at 18:04

crazymoin

yeah... prepared statements https://en.wikipedia.org/wiki/Prepared_statement – Funk Forty Niner Jun 25 '15 at 18:06
Consider using PDO, [with prepared statements](http://jayblanchard.net/demystifying_php_pdo.html). – Jay Blanchard Jun 25 '15 at 18:08

PHP mysqli - sanitize user input data with UTF-8 input

0 Answers0