PHP mysql_* commands and safe them.

[Samker132]

Encrypt your passwords and remove all specialchars from the username and the same at the email but there you need to allow this chars "@._-".

function clean_str($str) //function to clean strings
{
$str = @trim($str);
if(get_magic_quotes_gpc())
{
$str = stripslashes($str);
}
$str = preg_replace("/[^a-zA-Z0-9]/" , "" , $str);
return $str;
} // Ende Clean String

use this function for your usernames and for emails change the

$str = preg_replace("/[^a-zA-Z0-9]/" , "" , $str);to$str = preg_replace("/[^a-zA-Z0-9@._\-]/" , "" , $str);
 

Greets