MySQL Forums
Forum List  »  PHP

Re: Freehand Query form. Help needed.
Posted by: Peter Brawley
Date: September 25, 2013 10:25AM

$query= $_POST['query'];

should be

$query = mysql_real_escape_string( $_POST['query'] );

Read about sql injection.

Long code snippets don't usually get read here.

Options: ReplyQuote


Subject
Written By
Posted
September 25, 2013 06:11AM
Re: Freehand Query form. Help needed.
September 25, 2013 10:25AM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.