Posted by Michael Fesser on 11/09/06 17:00
..oO(kenoli)
>So, suppose I wanted to derive something like:
>
>WHERE $key1=$value1 AND $key2=$value2 . . .
>
>from my $_POST?
>
>How would I construct that?
You should start with thinking about SQL injection. Using user-submitted
values in a database query without any validation is dangerous.
Micha
[Back to original message]
|