mysql_real_escape_string [ ANSWERED ]

Ye' old general discussion board. Basically, for everything that isn't covered elsewhere. Come here to shoot the breeze, shoot your mouth off, or whatever suits your fancy.
This forum is not for asking programming related questions.

Moderator: General Moderators

Post Reply
User avatar
wtf
Forum Contributor
Posts: 331
Joined: Thu Nov 03, 2005 5:27 pm

mysql_real_escape_string [ ANSWERED ]

Post by wtf »

Is it sufficient to prevent sql injections?
Last edited by wtf on Thu Dec 08, 2005 2:35 pm, edited 1 time in total.
User avatar
Nathaniel
Forum Contributor
Posts: 396
Joined: Wed Aug 31, 2005 5:58 pm
Location: Arkansas, USA

Post by Nathaniel »

User avatar
wtf
Forum Contributor
Posts: 331
Joined: Thu Nov 03, 2005 5:27 pm

Post by wtf »

Thanks... that answered all my questions.
User avatar
AKA Panama Jack
Forum Regular
Posts: 878
Joined: Mon Nov 14, 2005 4:21 pm

Post by AKA Panama Jack »

Remember that's SINGLE quotes and not double quotes.

Actually you should use quotes around all data being inserted into any field, even if it is a float field. It makes things alot cleaner in the long run.
Post Reply