Home/ Questions/Q 8927879
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-15T08:18:37+00:00

Using the php strip_tag function to prevent HTML injection into my database I was

  • 0

Using the php strip_tag function to prevent HTML injection into my database I was wondering if there’s any way I can detect if it’s been used, ie the following:

if (strip_tags has been used/had any effect on the code) { error; }

I want to output an error the user letting them know that HTML tags cannot be used before hand instead of going straight to the db insertion.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Simply compare the sanitized data to the original data, and add a warning to the user if they don’t match:

    $data = $_GET["field_name"];
$sanitized = strip_tags($data);
if ($sanitized != $data) {
    echo "HTML not allowed.";
    // or...
    // throw new Exception("HTML not allowed.");
}
    • 0