Disable Magic Quotes

Other Languages: Español

Print this Article

Last Updated: March 16, 2015 2:48 PM

Magic Quotes is a process that automatically escapes incoming data to the PHP script. However, it can cause issues for your website and you might need to disable it.

NOTE:Since the release of PHP 5.3.0, this feature has been deprecated.

There are a few ways you can disable Magic Quotes:

Disabling Magic Quotes Server Side via php5.ini

Add this code to your php5.ini file:

magic_quotes_gpc = Off magic_quotes_runtime = Off magic_quotes_sybase = Off

If the hosting account does not have a php5.ini file, you have to add one.

For this change to take effect, you might need to stop your account's PHP process. For more information, see Manage system process (Linux).

Disabling Magic Quotes at Runtime

Place code at top of the .php file so it executes when the file runs:

<?php if (get_magic_quotes_gpc()) { function magicQuotes_awStripslashes(&$value, $key) {$value = stripslashes($value);} $gpc = array(&$_GET, &$_POST, &$_COOKIE, &$_REQUEST); array_walk_recursive($gpc, 'magicQuotes_awStripslashes'); } ?>

NOTE: The magic_quotes_gpc directive may only be disabled at the system level, and not at runtime.

For more information regarding Magic Quotes please refer to php.net.

Rate this article:

Help Center

Frequently Asked Questions

Related Articles