1. SA-MP Forums Archive
  2. SA-MP Server
  3. Server Support

Linear Mode
SQL Injection.
Meller
Banned
Posts: 578
Threads: 40
Joined: Dec 2016
#2

19.11.2017, 10:47
Use
Quote:

mysql_format(MySQL:handle, output[], len, format[], {Float,_}:...)
https://sampwiki.blast.hk/wiki/MySQL#mysql_format
Using %e instead of %s.

Or you can either use
Quote:

mysql_escape_string(const source[], destination[], max_len = sizeof(destination), MySQL:handle = MYSQL_DEFAULT_HANDLE)
https://sampwiki.blast.hk/wiki/MySQL#mysql_escape_string
Find
Reply
« Next Oldest | Next Newest »


Messages In This Thread
SQL Injection. - by Sanya4 - 19.11.2017, 10:42
Re: SQL Injection. - by Meller - 19.11.2017, 10:47
Re: SQL Injection. - by Sanya4 - 19.11.2017, 11:03
Re: SQL Injection. - by Meller - 19.11.2017, 11:10
Re: SQL Injection. - by Spmn - 19.11.2017, 11:38
Re: SQL Injection. - by Sanya4 - 19.11.2017, 12:00
Re: SQL Injection. - by Sanya4 - 19.11.2017, 12:05
Re: SQL Injection. - by Sithis - 20.11.2017, 10:02

Forum Jump:


Users browsing this thread: 1 Guest(s)
  1. SA-MP Forums Archive
  2. SA-MP Server
  3. Server Support