1,正则匹配,常用于过滤$tmp=eregi('http|.com|.cn|枪|药|早泄', $_REQUEST['content']); 过滤
if($tmp){echo 'aaa'};
2,insert into 时候转义' addslashes();
3,正则替换
function clsdiv($content)
{
$pattern[] = "/<(div.*?)>/";
$pattern[] = "/<(\/div.*?)>/";
$pattern[] = "/(<!--[if !IE]>).*?-->/";
$pattern[] = "/<(table.*?)>/";
$pattern[] = "/<style[^>]*?>.*?<\/style>/si";
$pattern[] = "/<style[^>]*?>.*?<\/style>/si";
$pattern[] = "/<td[^>]*?>.*?<\/td>/si";
$pattern[] = "/<tr[^>]*?>.*?<\/tr>/si";
$pattern[] = "/<tr[^>]*?>/si";
$pattern[] = "/<td[^>]*?>/si";
$pattern[] = "/<\/tr>/si";
$pattern[] = "/<\/td>/si";
$pattern[] = "/<tr[^>]*?>/si";
$pattern[] = "/<tr[^>]*?>/si";
$pattern[] = "/<tr[^>]*?>/si";
$clscontent= preg_replace($pattern, "", $content);
return $clscontent;
}
$file = preg_replace ("'<script[^>]*?>.*?</script>'si", '', $file);
