"; // Process POST variables with modern sanitization foreach ($_POST as $key => $value) { if ($key !== 'csrf_token') { // Use sanitize_input function from constants.php if (function_exists('sanitize_input')) { $value = sanitize_input($value); } else { // Fallback sanitization $value = trim($value); $value = stripslashes($value); $value = htmlspecialchars($value, ENT_QUOTES, 'UTF-8'); } $$key = $value; // Only output hidden fields for non-sensitive data if (!in_array($key, ['password', 'creditcardno', 'expirydate', 'cvv', 'card_holder'])) { echo ""; } } } // Ensure amount is properly sanitized $amount = isset($amount) ? htmlspecialchars($amount, ENT_QUOTES, 'UTF-8') : '0.00'; ?> Credit Card Details   Card Holder Name         Credit Card No         Expiry Date (MM/YY)         CVV         Amount    $