werid problem with mysql query.

[darkcarnival]

hello,

a script of mine that has a login area doesnt seem to like usernames that have or in the name.

like if a user uses toro or coreuser will not let a user log in correctly displaying errors evetywhere.

now my query is simple, the anti-injection function im using i disabled but still seems to cause problems.

if you want to see anything that could help you help me, just let me know and I'll provide it for you.

thanks.

[karthikeyan_coder]

let me know the query or script here

[nogray]

try to include the username in the '' quotes like 'toro'

[darkcarnival]

here is the query:

[code]"SELECT * FROM ebb_users WHERE Username='$logged_user'"[/code]

$logged_user is either $_COOKIE or $_SESSION(depends on what type of login the user chooses).

the anti_injection script can be found on the code library from this site ;)

[darkcarnival]

found the problem, its the anti-injection function i found on this site, if i see the author's email on their profile i might let them know about this problem.

for now I plan to do some research on a replacement to this injection function

any suggestions are fully welcomed :)