Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
P
P
Pavel K2017-06-18 00:05:10
PHP
Pavel K, 2017-06-18 00:05:10

How to do JSON escaping?

Greetings!
There is a certain JSON string that is taken from the user, written to the database, and thrown out to the user almost unchanged. It is necessary to quickly do exactly the escaping (without json_encode (json_decode ())).
Those. Roughly speaking, you need to replace dangerous characters in the keys/values ​​without touching the JSON quotes
, which is the fastest and easiest way to do this (most likely regular expressions, because I didn’t find any ready-made filters).
PS It is necessary to temporarily plug the hole, understand someone else's code and I will redo it later.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
B
Boris Korobkov, 2017-06-18
@BorisKorobkov

And how long has json_encode/json_decode been called escaping?!
What are you going to defend yourself from?
From SQL injection - use PDO.
From XSS - when rendering, use htmlspecialchars (if PHP) or its js counterpart xdan.ru/php-htmlspecialchars-jekvivalent-na-javasc...

Similar questions
S
Sergey Buben2016-06-16 11:37:54
How to add a second price in VirtueMart in Joomla? 3Reply
I
Isaac Clark2017-04-05 13:43:42
HTML5 GAME: Is it better to use Canvas or DIV for sprite animation? 5Reply
D
Dmitry Nesterov2021-07-13 16:57:10
How to display an svg icon on a photo using the GD library? 1Reply
P
picka2020-05-10 07:12:21
How to pass data from mySQL to html via Ajax? 1Reply
K
kirin studio2020-05-10 10:31:57
Malicious programs on the site, how to detect? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question