PHP - Special Character From Db, Good ... From Php, Bad

Folks,

Requirement:
I want a .htaccess level solution to 404 when the URL contains special characters other than mentioned in the below Rewrite rule:

Code: [Select]
RewriteRule ^([a-zA-Z0-9-!@#$^&*:"<>/?]{4,})\.html$ search.php?q=$1 [QSA,L]
So, what i want is, i want to show a 404 when the URL contains anything other than "a-zA-Z0-9-!@#$^&*:"<>/?"


What i have done:
Code: [Select]
RewriteRule ^([a-zA-Z0-9-!@#$^&*:"<>/?]{4,})\.html$ search.php?q=$1 [QSA,L]

Problem:
Its not working with Special characters but working only with English letters and Numerics in URL.

Cheers
Natasha T

I have this code to pull the first few words from the body text to use as a title. But, when the body contains apostrophe, it shows on my title as &#39;. I found the following code that's supposedly fixes the code. But, I can't figure out how. I need to add this:
$return = = htmlspecialchars_decode(token_replace($output, 'node', $node), ENT_QUOTES);
Or something similar ... to this:
Code: [Select]
$limit = 10;
$text = $node->body[$node->language][0]['value'];

$text = strip_tags($text);
      $words = str_word_count($text, 2);
      $pos = array_keys($words);
      if (count($words) > $limit) {
          $text = substr( $text, 0, $pos[$limit]);
          $text = trim( $text );
          $text = rtrim( $text, '.' );
          $text = trim( $text ) . '...';
      }

return  $text;

Thanks in advance.

Hi guys, I did read allot of documentation on the internet about reading/writing/parsing an XML file. I ended up using the following code, because I really have large files (some about 200MB) and regular dom does not work:

while ($xml->read()) {
switch ($xml->nodeType) {
case (XMLReader::ELEMENT):
if ($xml->localName == "job") {
$node = $xml->expand();
$dom = new DomDocument();
$n = $dom->importNode($node,true);
$dom->appendChild($n);
$job = simplexml_import_dom($n);


The problem I have is a special character error in the xml file, error returned on this line: "$node = $xml->expand();"

I am literally banging my head to the wall to find a simple solution to this. I already have a cleaning function, but that can be applied only after the code above. As the file is large, to clean it, I would have to use the same code above to work on partial content at once, so I would have the same special character problem when I would try to read and split the file.

I bet I am not the first one to be in this situation, but after about 5 hours of searching on the internet, I cannot do it no more. And I am not a php expert to come up with a new idea.

One other thing to do probably would be to split the file into multiple files, and read them after that, without using the XMLReader. But this would ask for a different application.

If, for example, on a file where I have an error, I do the reading with simplexml, without using the XMLReader, I don't get the error. But I cannot use simplexml on the files, since file size is variable. I have to use a reliable method that works for all situations.

Hopefully someone has an idea to this STUPID situation!

Thanks.

Hi guys, I am writing a "login" script  that will be on my main page(I have it inside of <head></head> tags). I want it to take a user name and password, store it in a variable that is persistant with all pages on my website. Is that possible? How can I make a variable that will carry over to a page that doesn't have the original code? E,g, $Login = "alogin"; then when my client goes to a different page $Login still == "alogin"?
I hope this is understandable.
I am not writing a very advanced script, I just want the input form to store the users login name/password so he or she may access a section of the site that has more options available if they're logged in.

Hi experts. 

I am received a GET variable into a page which is a id with a value as uuid:3242_2323_4444_9909_433/child_repeat[1]. Which is being used in my mysql query. 

So my query will be SELECT * from table_1 WHERE id = $id.  

However php is treating this string differently, my query fails, it says that it has a error near :3242_2323_4444_9909_433/child_repeat[1]. 

So it seems that its interpreting the colon as something else and removing the text before the colon. 

Hi
I have a problem
Use my site to profit from profitable links
for example
Page 1 Navigate Page 2 with a profit link
But the problem here is that they can several times copy the page link = 2 and thus override the profit link
Is there a solution, you must pass to page 1 in order to pass to page 2

Edited December 5, 2019 by chouaib

Hi all

I need to retrieve a remote file and store it on my server. There are several methods to do this, but all of them fail when the URL contains special characters such as spaces.

Consider the following URL: 'http://www.somedomain.com/Images/Products/MyProduct (Large).jpg'

Assuming the allow_url_fopen  directive is set to "on" in the php.ini, one can normally call:

$url = ...
$handle = fopen($url);


to access the file.

However, the space in the filename causes a Bad HTTP Request (Response 400).

Using urlencode to encode the url doesn't solve the problem either, as all forward slashes and the colon after the protocol get escaped, and fopen doesn't recognize it as a URL.

Besides manually replacing all the characters in the URL that are not colons or forward slashes (and are considered 'special'), can anyone give me any other solutions to make this work?

Thanks

Hello everyone,
how i can insert to the db string that include "$_GET['id']", and i need this as is.
in the table i need to see the string $_GET['id'] and not the value.

any ideas ?

Hi everyone,

 I hope someone can give me an answer to problem that has eluded me for about 2 weeks. I just can not find the answer.

My problem is that I have a database that I want to return the average of a column BUT the average number that gets calculated can not include the oldest two records that were entered in that particular column.

In other words, if I have ten entries in a column only the latest 8 entries will be used to calculate the returned average.

Here is the basic query I am using:

Code: [Select]
$result = mysql_query("SELECT *, avg(miles) AS av_miles FROM mpg WHERE vehicle_id='$id' ");
Thank you for help in advance.

Code: [Select]
$DB->query("SELECT id,name from ibf_members where name = '{$ibforums->input['to']}' LIMIT 1");
       $e2 = $DB->fetch_row();
   if ($e2['id']){
   }else{
   $std->Error2("Username doesn't exist dude");
   }

Ok, if I put in my username let's say

1of my users name is

"$tabB"

if I do that, it doesn't work

is there a work around?