GetSQLValueString

Questions about the MySQL, PostgreSQL, and most other databases, as well as using it with PHP can be asked here.

Moderator: General Moderators

Post Reply
Anglophobe
Forum Newbie
Posts: 11
Joined: Tue May 09, 2006 11:50 am

GetSQLValueString

Post by Anglophobe »

I recently had a question posed to me:
Can we assume that GetSQLValueString() does something similar to mysql_real_escape_string(), so you protect yourself from SQL injection attacks?
I honestly have no idea - "GetSQLValueString" was put in automatically by DreamWeaver, and I really don't know a technical definition of what exactly it does. Could someone explain it to me, and answer the above question, please? (holy cow, sql injection is creepy - I just lost a bunch of techno-innocence)
User avatar
RobertGonzalez
Site Administrator
Posts: 14293
Joined: Tue Sep 09, 2003 6:04 pm
Location: Fremont, CA, USA

Post by RobertGonzalez »

Anglophobe
Forum Newbie
Posts: 11
Joined: Tue May 09, 2006 11:50 am

Post by Anglophobe »

Okay, I'm still trying to wrap my brain around this one, but I think what I'm getting is that GetMySQLValueString if a user-defined function, which Dreamweaver injected into the code for me, thus keeping me in my infant state technologically. Again, *sees world through different eyes*
User avatar
RobertGonzalez
Site Administrator
Posts: 14293
Joined: Tue Sep 09, 2003 6:04 pm
Location: Fremont, CA, USA

Post by RobertGonzalez »

Yeah, when I googled it the first thing that became evident was that it was a user/application defined function. Whenever you get those errors about a call to an undefined function it means one of a few possible things: 1) You did not uncomment an extension in the php.ini file, 2) you spelled a PHP native function name wrong, 3) you spelled one of your own custom function names wrong, 4) you called a function you were planning on developing but haven't gotten around to yet, or 5) you called a function that is in a file that you didn't include into your app.

I know there are more, but the ones mentioned above are the ones that I have had personal experience with :wink: .
Post Reply