PHP Code:
function anti_injection($sql) {
$sql = preg_replace(sql_regcase("/(from|select|insert|delete|where|'|\"|drop table|show tables|#|\*|--|\\\\)/"),"",$sql);
$sql = trim($sql);
$sql = strip_tags($sql);
$sql = addslashes($sql);
return $sql;
}
$username=anti_injection($_POST['username']);
$password=md5($_POST['password']);
$password2=anti_injection($_POST['password']);
$playername=anti_injection($_POST['playername']);
$email=anti_injection($_POST['email']);