Re: In MySQL can you use JOIN for INSERT queries?
Posted: Sun Dec 14, 2008 7:11 am
Warning: security issues (powerful SQL injections)!jaoudestudios wrote:...or use MySQLi with multiplie queries.
A community of PHP developers offering assistance, advice, discussion, and friendship.
http://forums.devnetwork.net/
Warning: security issues (powerful SQL injections)!jaoudestudios wrote:...or use MySQLi with multiplie queries.
Really? I thought MySqli was MySql(improved) so better with speed and security?Warning: security issues (powerful SQL injections)!
As pytrin said, I was referring to the "multiple queries" mode, not the mysqli library itself.jaoudestudios wrote:Really? I thought MySqli was MySql(improved) so better with speed and security?Warning: security issues (powerful SQL injections)!
Code: Select all
$sql = 'select * from posts where post.author_id = '. $_GET['id'];Code: Select all
http://badsite.com/posts/view.php?id=1 or 1=1Code: Select all
http://badsite.com/posts/view.php?id=1;drop database user; drop database post;