MySQL, real_escape

Linear Mode

MySQL, real_escape_thing

[WS]Hyper
Huge Clucker

Posts: 314
Threads: 10
Joined: Sep 2008
Reputation: 0

28.11.2009, 10:02

Oh ok, I understand half of that I think. Does it mean that players could for example type DROP table blablabla as 'value' and then that table would be deleted? And the escape thing is supposed to prevent players from typing that? If that's all it's not a big problem because only value has to be Numeric. But is there any other reason why I should use escape string? Can people 'inject' in another way?

Find

« Next Oldest | Next Newest »

Messages In This Thread

MySQL, real_escape_thing - by [WS]Hyper - 28.11.2009, 09:26

Re: MySQL, real_escape_thing - by Streetplaya - 28.11.2009, 09:36

Re: MySQL, real_escape_thing - by [WS]Hyper - 28.11.2009, 09:40

Re: MySQL, real_escape_thing - by Streetplaya - 28.11.2009, 09:41

Re: MySQL, real_escape_thing - by [WS]Hyper - 28.11.2009, 09:43

Re: MySQL, real_escape_thing - by Streetplaya - 28.11.2009, 09:50

Re: MySQL, real_escape_thing - by [WS]Hyper - 28.11.2009, 10:02

Re: MySQL, real_escape_thing - by Streetplaya - 28.11.2009, 10:05

Re: MySQL, real_escape_thing - by [WS]Hyper - 28.11.2009, 10:16

View a Printable Version

Forum Jump:

Users browsing this thread: 1 Guest(s)

Login
Username:
Password:	Lost Password?
	Remember me