What’s the best current method to sanitize PHP form input against XSS and SQL injection? Any modern alternatives to htmlspecialchars?
