Re: [PHP] Select and $_POST — PHP — IT news, forums, messages

You are here: Re: [PHP] Select and $_POST « PHP « IT news, forums, messages

Posted by Curt Zirzow on 11/12/64 11:31

On Wed, Nov 09, 2005 at 11:21:36PM -0000, Ross wrote:
>
> What is the correct syntax for
>
> $query = "SELECT * FROM login where username='$_POST['username']' AND pass
> ='$_POST['pass']'";
>

<?php
if (get_magic_quotes_gpc()) {
$_POST['username'] = stripslashes($_POST['username']);
$_POST['pass'] = stripslashes($_POST['pass']);
}

/* where dbdriver is mysql[_real] or pg, etc.. */
$username = dbdriver_escape_string($_POST['username']);
$pass = dbdriver_escape_string($pass);

$query = "SELECT * FROM login
WHERE username = '$username' AND pass = '$pass'";

Curt.
--

Navigation:

Next in forum: Re: [PHP] Re: Select and $_POST
Prev in forum: Re: php extension path confusion under apache (xp)
Thread view: Re: [PHP] Select and $_POST

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация