 and welcome. I am doing this video to ask you guys a question. I do use PHP as a server-side scripting language on a lot of my web servers and I know just the bare minimum of it. I use it to read things and write things to files and of course my SQL database stuff and also sometimes SQLite databases depending on what I'm doing. But I know the bare minimum of it and of course if you do things wrong it can cause vulnerabilities on your system. So I have a simple question for those of you out there who may be more familiar with PHP than I am. So I'm in a directory here in my web directory called PHPQ for a PHP question and right now it's an empty directory but I'm going to create an index file here and I'm going to write a PHP script. A very simple one here. In fact I'm going to use a template that I've created that I use quite often and it's this PHP get form. So basically it's going to retrieve. I'll show you. I'm going to just save it. Go to my web browser here and it's a blank page if you don't pass it anything but now I can pass it stuff like name equals Bob. If I do that it says name is Bob and I can add other variables in here. As you can see I did a little example of this earlier. Phone equals 555, 555, 555 and address is 123 maple have. And basically it's just what it's doing here is it's taking any variable pass there in the URL and it is stripping tags and you converting things and coding it with HTML special characters here putting all that back into that array and then slipping through the array here and echoing out the key and the value for each one. So my question to you is this. What else would you do? Would you do anything else to sanitize to clean up this to prevent you know different types of attacks that people might do on the web server? Do you think this is enough? I really don't know a lot about this. This is what I normally use and but I see things where there are functions for sanitizing for different things but it seems like there you have to pass it each individual item and in the tutorials I looked at where this I'm giving it an array and it's piping it back overriding that array originally I would like something like that. So yeah in the comments below you know if you know about this don't put code if you can unless it's like one or two lines in the comments try to use paste bin or something equivalent to that and paste in there but any advice from you guys would be great you know I do a lot of tutorials for you guys maybe you guys can teach me something because again my PHP skills are minimal I basically do the same things over and over again I have templates that I've created like this one here for common things so like I said this is just equating things back but that sounds when I dump stuff into databases I start off with this and then I loop through each item and dump it into the database or retrieve it from the database depending on whether I'm entering stuff or retrieving stuff so let me know what you think is this code good do you think this is good enough is there something you suggest to secure it more sanitize it more I'd appreciate it and I look forward to your comments let me know and I thank you for your time and I hope that you have a great day