why .mysql_escape_string($_COOKIE['USERNAME']). ?
Posted: Wed May 31, 2006 4:19 pm
in one of my previous posts you guys helped me to update the table, but one of you used
why is that better than if i used a plain $_COOKIE['USERNAME'] ?
full line is
Code: Select all
.mysql_escape_string($_COOKIE['USERNAME']).why is that better than if i used a plain $_COOKIE['USERNAME'] ?
full line is
Code: Select all
$query = "UPDATE `users` set `password` = $newp where `username` = '".mysql_escape_string($_COOKIE['username'])."'";