function sqlCheck($parameter){    $arr = array();    foreach($parameter as $k=>$v){        $arr[$k] = sprintf("%s",preg_replace(‘/\b(=|<|>|and|or|;|where|from|not|HAVING|select)\b/im‘,‘‘,$v));    }    return $arr;}$_GET = sqlCheck($_GET);$_POST = sqlCheck($_POST);$_REQUEST = sqlCheck($_REQUEST);