Thread: mySQL security
View Single Post
muso

 
muso's Avatar
 
Member Since: Jan 15, 2003
Location: Whangarei, New Zealand
Posts: 2
muso has a reputation beyond reputemuso has a reputation beyond reputemuso has a reputation beyond reputemuso has a reputation beyond reputemuso has a reputation beyond reputemuso has a reputation beyond reputemuso has a reputation beyond reputemuso has a reputation beyond reputemuso has a reputation beyond reputemuso has a reputation beyond reputemuso has a reputation beyond repute
Mac Specs: Pwnt

muso is offline
You mean post to PHP_SELF() or whatever, and have the database script in the same file?

Do single quotes prevent mySQL commands being entered? I think the only way I could even get the form data into the database was to use something like:
insert into table values('$first_name', '$last_name')
Is that secure, if I use stripslashes with it?

I'm in your forums, writing sentences in a grammatically acceptable manner.
QUOTE Thanks