Re: Display selected record that has been passed to URL — PHP Programming Language

You are here: Re: Display selected record that has been passed to URL « PHP Programming Language « IT news, forums, messages

Posted by Adam Plocher on 03/11/06 01:49

Ren, I have written up an article on SQL Injections that you might want
to look at, too. A SQL Injection is caused when an end-user modifies
your input value and adds their own SQL to it (which could result in a
deleted DB table or worse). For this particular example you could do
something simple like

if(!is_numeric($RID))
{
die("Invalid Input");
}

More information is here:
http://www.digitalpropulsion.org/blog/Programming/SQL_Injections_in_PHP_with_MySQL

Navigation:

Next in forum: my script pauses - no calls to database or file system - but a long pause
Prev in forum: Re: Difference between get_cfg_var() and ini_get()
Thread view: Re: Display selected record that has been passed to URL

[Reply to this message]

Удаленная работа для программистов • Как заработать на Google AdSense • England, UK • статьи на английском • PHP MySQL CMS Apache Oscommerce • Online Business Knowledge Base • DVD MP3 AVI MP4 players codecs conversion help

Home • Search • Site Map • Set as Homepage • Add to Favourites

Сайт изготовлен в Студии Валентина Петручека —
изготовление и поддержка веб-сайтов, разработка программного обеспечения, поисковая оптимизация