Jochen Kaechelin wrote:
Can somebody give me some general hints how to prevent
sql-injection?
I always go this way to build my queries:
function clean_mysql_string($string) {
$clean_string = stripslashes($string);
$clean_string =
Date: Sun, 5 Mar 2006 16:59:13 +0100
To: mysql@lists.mysql.com
From: Jochen Kaechelin [EMAIL PROTECTED]
Subject: is this safe against sql-injection?
Message-Id: [EMAIL PROTECTED]
Can somebody give me some general hints how to prevent
sql-injection?
You may also want to consider the use
Can somebody give me some general hints how to prevent
sql-injection?
I always go this way to build my queries:
function clean_mysql_string($string) {
$clean_string = stripslashes($string);
$clean_string = htmlentities(strip_tags(($clean_string)));