PHP's new input_filter does not read $_GET or $_POST arrays

Question

In PHP 5.2 there was a nice security function added called \"input_filter\", so instead of saying:

$name = $_GET[\'name\'];

you can now say

Answer 1

PHP's new input_filter does not read $_GET or $_POST arrays. If you are overwriting Global's (like,$_GET,$_POST) then Don't go for filter_input. Instead use filter_var ( $_GET['name'], FILTER_SANITIZE_STRING ) by manually passing variable.