Training, Open Source
computer languages

PerlPHPPythonMySQLApache / TomcatTclRubyJavaC and C++LinuxCSS 

Search our site for:
Print friendly page
Home Accessibility Courses Diary The Mouth Forum Resources Site Map About Us Contact
String searching

Posted by mitch2301 (mitch2301), 2 June 2006
I am working on a data validation class which checks length and formats of inputs (such as numerical, alphabetical input etc)

I have the following array with some event handlers in it:

Code:
var $event_handlers = array("onLoad=", "onClick=", "onDblClick=", "onKeyPress=", "onMouseMove=", "onMouseOver=", "onMouseOut=");


The class also contains this variable:

Code:
var $input_data;


It contains the data which is going to be checked in the class.

I am trying to find a function which will check the string against the array to see if the string contains any event handlers.  Initially the class removed the event handlers straight off but I have decided  I would like to record the input in a table in the database THEN remove the event handlers.  It's basically so I can have a table containing the original bad input while removing the event handlers and letting the class remove them and continue running.

Basically I want something which does the following:

Code:
if ($string contains anything from $event_handlers array)
{
     // Record the input in database with username, time and ip
   
 // Remove the event handlers before continuing through the class
  $this->input_data = str_replace($event_handlers, "Hacking Attempt!",  $this->input_data);
}


I hope someone here can help me.  I get the feeling its one of those basic functions I really should know but don't  

Posted by admin (Graham Ellis), 2 June 2006
How's this?

Code:
<?php
$event_handlers = array("onLoad=", "onClick=",
               "onDblClick=", "onKeyPress=",
               "onMouseMove=", "onMouseOver=", "onMouseOut=");
$teststring = "This is some text with an onClick= in it";
$cleanstring = ereg_replace("(".implode("|",$event_handlers).")",
                               "<Hacking attempt>",$teststring);
print "$cleanstring\n";
?>



Posted by mitch2301 (mitch2301), 2 June 2006
It work to get the basic part of what I want done (two different strings) but I still need some sort of logic to it because I don't want to record every bit of input in the table.

If this is any help; I was thinking of a function like in_array() only I need one for checking strings rather than arrays.

Even if it was something like:

Code:
if($cleanstring contains "Hacking Attempt")
{
 // store in database
}


Posted by mitch2301 (mitch2301), 2 June 2006
Ah, I got it.

in_array works for it too.

Thanks for the help


This page is a thread posted to the opentalk forum at www.opentalk.org.uk and archived here for reference. To jump to the archive index please follow this link.
Course Booking
Subject:
Other Forum Posts
Data can't be inserted into Access database
Defensive OO Programing in PHP
ob_start() is inactive !!
Creatin fields in a table from an array
WHY CANT I PASS THE SIZE VARIABLE FROM Gorder.html
Array Push to skip first line
Retain the data on &quot;Back Button &quot; click of Browser
Saving image as base64
Using a redirect in a PHP mail form
'Proper' PhP
reading image from mysql
PHP and Google Maps API
PHP - processing images as mySQL Blobs
How to grab the databse of other sites databse
Images from a database, Multiple images per page
Uploading images/other binaries to MySQL via PHP
php passing and assigning variables
php ignore html
#define in PHP
I need to block users from creating an account...
date of the last added Link
xml and php problem
Security and safemode
Session question
Manipulation of pdf files thr php
PHP, Basic flat file shout box HELP
function to add HTML tags to text
preg_match to validate form
resize image before saving to mysql as blob
Sending mail with a order from a customer
any one help me to convert this code to php
Image and form upload
Inserting an image as a blob in PHP
Trouble with a Calendar Script
PHP and Regular Expressions
Regarding &quot;last updated&quot;
Uploading images to a website using PHP
Count links under a category
Simple Integration Method PHP trouble
Blob Images with Functions
Benchmarking code
Cusor postion in textcontrol with java script
Invalid argument supplied for foreach()
Seeking Freelance PHP/MySQL Coder
Character Encoding in PHP
URL variable passing proble:
PHP Version?
Top ten downloads
premature end of script headers
String searching
HTTP_REFERER nothing there?
MySQL Upload Script
Writing RE in PHP 5
Extracting html form input elements
serve files from PHP
addslashes() &amp; stripslashes() question
removing carriage returns/line feeds/line breaks
Looking for a freelance PHP/MySQL programmer
Quotes in Variable escaping Form Value
Notice: Undefined index: error in script
looking for ImageGif
Inserting data into a database
Telnet from PHP
how to make cursor work twice
Querying multiple table
tidy xslt
using the correct tools?
PHP Website Hosting
Digging out embedded tags with preg_match_all()
Validate HTML offline on LAMP Dev Server
Splitting Strings
Assigning variables by value and reference
Concat and Declare variable in Oracleusing OCI
executing package not working
Databse Owner
How to avoid Resource_ID Error ?
Oracle Package Bind Error
Resource Id Error
// indicating 'currentpage' state with PHP/CSS
Passing a URL variable
Warning: Cannot modify header information
open file, change content, save file
PHP &amp; SSH
Does a particular URL exist?
outputing images from a php script,help.
Clearing history, cookies and cache files from PHP
Email Addresses for a particular company
Sendmail goes to-BUlk-folder
Wanted - include relative to include
301 redirect
Email Notification
Reading file contents
Looking 4 PHP function to load + display page.
Moved: Looking for a php professional
Using the header function
Help please! User Password &nbsp;
ociplogon problem
Problem on user varification?
To Retrive clob datatype using oci funtions in php
How to Travese a xml string
Protect Files
regular expression help
PHP / MYSQL SEARCH ENGINE RANKINGS
Grab information from another Website
Regular Expression Problem
Trouble with MySQL command in script
Deleting a cookie
preg_replace
Objects, multithreaded web servers and persistance
summing a row in mysql
Random image in a web page via PHP?
Data truncation copying from file to mySQL table
My PHP tags aren't being interpretted
Why the error?
9 ways of sorting plus 2
yahoo maps
TripleDES encryption
pack and unpack
PHP/SMTP Mail Problem
Webserver permissions and PHP
Help - input used to go to sendmail now to file
Pausing
retrieving blobs with names
decoding entities in PHP
Which books to choose ?
public beta testing of PHP Editor
email with required fields
Arrays (?) and URLs
Using convert_uuencode to store images in MySQL DB
Help passing variables
php.ini under Mac OS X
hivalidation on submit
Valdiating Forms Using preg_match
Portability - questions for new programmers
PHP - GD - ImageMAP - Problems
Passing PHP Variables in a URL
submit button
is XSLT available in PHP?
Warning: Unknown():
PHP &amp; Prolog
Sending info to a new page
shopping list in PHP
math equation in php
php sql problem
PHP ereg()
History and background
Looking for a script in PHP
Html / PHP form into MySQL DB
Writing form field names to text file
Using a Form to write variables to a php page
Refreshing a page with PHP
Cloaked redirection
Redirect to another page
Script works online, but not locally??
Multi-dimensional arrays
Loop Problem
Count query in MySQL
Resource id #3 - no data from simple queries
To use .gif, .png or .jpg?
MySQL Security
Objects in PHP5
Spot the mistake??
create html table WITHOUT pear
create php table to input a &nbsp;string Can you hel ?
Jazzing up PHP Emails!
addition of time
login script - tips/security
Moved: My root account is messed up - what can I do?
Cookies 101 with a twist
Adding spaces to a string
Uploading an image
Trying to refresh page
PHP &amp; sendmail frustration
getdate () problem
program file extension .php4
Pulling data from a mySql table
Clearing/resetting a page
mysql error
Code misses out when data has spaces
Quickie on preg_match
Link to site not working ??
php counter for web pages
really stupid question
select-option list
counting the number if params passed to function
Email from PHP
Where is php.ini under Mac OSX
Deleting duplicates from an array
strip_tags stripping hyphen
Trouble pulling data using reg exp.
iffy if statement ?
math in php / mysql
Failing to write all data to file
deleting a file from within a php script
PHP vs ASP
Sending PDF File to Browser via PHP
How long can a string be?
Warning stat failed for...
I need some input
error message
Release 4.3.1
DIRNAME (php 4.3.0)
User input and other checking
New PHP release
PHP Books
Which browser is being used?
Regular exressions in PHP
Searching a string for HTML tags
fwrite
Confusing
Using the back button in Netscape
Passing many SQL queries to one mysql_query
Removing last character of a string
Array query
Counting character groups in a string?
keyword searches
Retreiving a web page in PHP
PHP Form Processing Template
What is '&amp;new' &nbsp;?
Making every page on a site into PHP
Session demo in a nutshell
Handling Comman Separated Variables in PHP
PHP Warnings
Incompatability in 4.1.2 over 4.0.x
Passing variables from page to page
Using booleans in PHP
Sending form variables to a text file
I cannot access MySQL from PHP
Passwords for MySQL; a conundrum??
PHP Independent of database - How?
Writing form variables to a file
use strict
WELL HOUSE CONSULTANTS LTD.: Well House Manor • 48 Spa Road • Melksham, Wiltshire • United Kingdom • SN12 7NY
PH: 01144 1225 708225 • FAX: 01144 1225 707126 • EMAIL: info@wellho.net • WEB: http://www.wellho.net • SKYPE: wellho