Posted by plemon on 11/28/06 17:28

i dont understand what you mean about if i dont get the info from post
where am i going to get it?
Erwin Moller wrote:
> so many sites so little time wrote:
>
> > alright so i deleted the part about you must have made a mistake in
> > using this page
> > and added
> > if (!$r) {
> > // There was an error
> > // for simplicity sake, I'll just print it and exit
> > exit('Error in query (' . $query . '): ' . mysql_error());
> > }
> > and as you can see at kirewire.com/pp2/update_site.php
> > all it says now is you must have made a mistake in your query
> >
> > agian the queries are:
> >
> > <snip>
> > // Define the query.
> > $query = "UPDATE home SET header='{$_POST['header']}',
>
> Did you fix the SQL-injection vunerability I was warning you about?
> No.
> Reread my post.
> Do yourself a favor and fix it.
>
> Regards,
> Erwin Moller

• Next in forum: Re: the script wont work and i cant find anything wrong please help
• Prev in forum: Re: return of a field value (auto-increment) after insert (mysql)
• Thread view: Re: the script wont work and i cant find anything wrong please help

[Reply to this message]