Re: Mysql insert problems

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: Andy Pieters <mailings@xxxxxxxxxxxxxxxx>
Subject: Re: Mysql insert problems
From: Burhan Khalid <phplist@xxxxxxxxxxxx>
Date: Sat, 16 Apr 2005 12:10:23 +0300
Cc: php-general@xxxxxxxxxxxxx, Frank Miller <fmiller0423@xxxxxxxxx>
Delivered-to: mailing list php-general@lists.php.net
Delivered-to: ezmlm-scan-php-general@lists.php.net
Delivered-to: ezmlm-php-general@lists.php.net
In-reply-to: <200504152259.38748.mailings@vlaamse-kern.com>
List-help: <mailto:php-general-help@lists.php.net>
List-post: <mailto:php-general@lists.php.net>
List-unsubscribe: <mailto:php-general-unsubscribe@lists.php.net>
References: <a6dece6505041512182667e903@mail.gmail.com> <200504152259.38748.mailings@vlaamse-kern.com>
User-agent: Mozilla Thunderbird 1.0 (Windows/20041206)

Andy Pieters wrote:

Hi
Whilst you are searching the net, you might also want to search for 'sql injection'. This is no joke!

Please use the mysql_escape_string on each variable you get from the user side.


Use mysql_real_escape_string() instead.

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

References:
- Mysql insert problems
  - From: Frank Miller
- Re: Mysql insert problems
  - From: Andy Pieters

Prev by Date: Re: Determining array type
Next by Date: A question
Previous by thread: Re: Mysql insert problems
Next by thread: Re: Mysql insert problems
Index(es):
- Date
- Thread

[Index of Archives] [PHP Home] [Apache Users] [PHP on Windows] [Kernel Newbies] [PHP Install] [PHP Classes] [Pear] [Postgresql] [Postgresql PHP] [PHP on Windows] [PHP Database Programming] [PHP SOAP]

Powered by Linux