07.01.2016, 22:22
Don't use "%s" for a player's name, always use %e to prevent mysql injections.
If a player would enter a name like
, your database is gone without warning if you use %s for user-inputted text.
As for the problem, %i or %d would be fine as Harrison said, without the ' around it.
You only need to use a value between ' when it's a string.
If a player would enter a name like
PHP код:
";DROP TABLE players;"
As for the problem, %i or %d would be fine as Harrison said, without the ' around it.
You only need to use a value between ' when it's a string.