Re: syntax question

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

At 3:59 PM +0100 3/26/07, Ross wrote:

Can I put post values directly into insert statements?

$query = "INSERT INTO categories (category_name) VALUES
('$_POST['cat_name'])";



Open to sql injection.

tedd
--
-------
http://sperling.com  http://ancientstones.com  http://earthstones.com

--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[Index of Archives]     [PHP Home]     [Apache Users]     [PHP on Windows]     [Kernel Newbies]     [PHP Install]     [PHP Classes]     [Pear]     [Postgresql]     [Postgresql PHP]     [PHP on Windows]     [PHP Database Programming]     [PHP SOAP]

  Powered by Linux