Re: Adding a filename to a MySql database
Posted by:
Rick James
Date: November 21, 2009 11:01AM
Never do
mysql_query("INSERT ... VALUES ('$val', ...)
without first escaping $val:
$eval = mysql_real_escape_string($val);
mysql_query("INSERT ... VALUES ('$eval', ...)
Subject
Written By
Posted
November 20, 2009 05:58AM
Re: Adding a filename to a MySql database
November 21, 2009 11:01AM
November 23, 2009 08:27AM
November 23, 2009 10:28AM
November 23, 2009 11:10AM
November 23, 2009 09:14PM
Sorry, you can't reply to this topic. It has been closed.
Content reproduced on this site is the property of the respective copyright holders.
It is not reviewed in advance by Oracle and does not necessarily represent the opinion
of Oracle or any other party.