', '(', ')', '..', '%', '*', '+', '!', '@');
$allowableParams = array('p', 'id');
if (isset($_SERVER['QUERY_STRING']) && !empty($_SERVER['QUERY_STRING'])) {
require_once(CLASSES_PATH . "/class.clean.php");
$clean = new MrGETClean;
$queryString = $clean->queryWalk($_SERVER['QUERY_STRING'], $forbiddenSymbols, $allowableParams, $_SERVER['SCRIPT_NAME']);
if ($queryString != $_SERVER['QUERY_STRING']) {
$newURL = basename($_SERVER['SCRIPT_NAME']) . '?' . $queryString;
header("location: " . $newURL);
}
}
echo '';
?>
Clean GET
Cleaned Query: