SQL Injection
#4

No need to call mysql_escape_string as long as you use mysql_format with %e specifier for escaping the string. The users above already mentioned when you should escape the strings.
Reply


Messages In This Thread
SQL Injection - by JaKe Elite - 05.06.2015, 01:49
Re: SQL Injection - by Calgon - 05.06.2015, 01:55
Re: SQL Injection - by PowerPC603 - 05.06.2015, 06:35
Re: SQL Injection - by Konstantinos - 05.06.2015, 08:39

Forum Jump:


Users browsing this thread: 2 Guest(s)