|
-
Oct 13th, 2008, 09:29 AM
#1
Thread Starter
Hyperactive Member
php sql single quotes problem
Hi,
if user pass in a single quotation value into my webpage, it will have error, how do I resolve that?
I'm new to php and heard this issue is also relate to security issue (SQL Injection).
Please advise 
-
Oct 13th, 2008, 09:50 AM
#2
-
Oct 15th, 2008, 02:45 AM
#3
Re: php sql single quotes problem
Just to butt in... SQL injection is one of a few methods of exploiting a weak website, so it is very important that you follow manavos advice.
I have been starting to research SQL injections recently, the best way to prevent them, is to learn how they work, this article provides a cool insight into how SQL injection works, and methods of preventing it in numerous languages.
http://unixwiz.net/techtips/sql-injection.html
-
Nov 7th, 2008, 12:34 PM
#4
Frenzied Member
Re: php sql single quotes problem
Better use mysqli prepared statements
Posting Permissions
- You may not post new threads
- You may not post replies
- You may not post attachments
- You may not edit your posts
-
Forum Rules
|
Click Here to Expand Forum to Full Width
|
Reply With Quote
