MySQL Forums
Forum List  »  PHP

Re: adding data to mysql table using php code
Posted by: Peter Brawley
Date: November 18, 2021 08:55AM

The action of the form needs to name the php script that will translate the posted data.

And in that script, to avoid sql injection, the posted data needs to run through mysqli_real_escape_string() or, alternatively, build a PREPAREd query.



Edited 1 time(s). Last edit at 11/18/2021 08:36PM by Peter Brawley.

Options: ReplyQuote


Subject
Written By
Posted
Re: adding data to mysql table using php code
November 18, 2021 08:55AM


Sorry, you can't reply to this topic. It has been closed.

Content reproduced on this site is the property of the respective copyright holders. It is not reviewed in advance by Oracle and does not necessarily represent the opinion of Oracle or any other party.