(PHP 4 >= 4.2.0, PHP 5)
mb_ereg_replace — Replace regular expression with multibyte support
$pattern
, string $replacement
, string $string
[, string $option
= "msr"
] )
Scans string
for matches to
pattern
, then replaces the matched text
with replacement
pattern
The regular expression pattern.
Multibyte characters may be used in pattern
.
replacement
The replacement text.
string
The string being checked.
option
option
parameter. If i is specified for this
parameter, the case will be ignored. If x is
specified, white space will be ignored. If m
is specified, match will be executed in multiline mode and line
break will be included in '.'. If p is
specified, match will be executed in POSIX mode, line break
will be considered as normal character. If e
is specified, replacement
string will be
evaluated as PHP expression.
The resultant string on success, or FALSE
on error.
Note:
mb_regex_encoding() 指定的内部编码或字符编码将会当作此函数用的字符编码。
处理非信任的输入时从不使用 e 修饰符,就不会转码(即调用 preg_replace())。不注意 这些会很可能会导致应用程序引发远程代码执行的漏洞。
Never use the e modifier when working on untrusted input. No automatic escaping will happen (as known from preg_replace()). Not taking care of this will most likely create remote code execution vulnerabilities in your application.