Jump to content

Existing user? Sign In
Sign In

Remember me Not recommended on shared computers

Forgot your password?
Sign Up

Browse
- Forums
- Staff
- Leaderboard
- Guidelines
- Terms of Service
- More
Activity
- All Activity
- Search
- More
Join our Discord!
More
- More

Application Design

Security ( SQL injections )

bolt

By bolt
November 5, 2008 in Application Design

Start new topic

Recommended Posts

bolt

Newbie

bolt

Posted November 5, 2008

- Share

Posted November 5, 2008

Hello,

I have a question about SQL injections. What functions should I use before inserting data into a database or before using variables in SQl sentence.

I know two functions:

-mysql_real_escape_string

-addslashes

what is the difference between these two functions? Which function should I use before inserting data in database or using variables in SQl query?

Link to comment

https://forums.phpfreaks.com/topic/131536-security-sql-injections/

Share on other sites

rhodesa

Newbie

rhodesa

Posted November 5, 2008

- Share

Posted November 5, 2008

if you are using a MySQL database, mysql_real_escape_string(). addslashes doesn't properly escape all the characters needed.

Link to comment

https://forums.phpfreaks.com/topic/131536-security-sql-injections/#findComment-683175

Share on other sites

Archived

This topic is now archived and is closed to further replies.

Go to topic listing

×

Browse
- Back
- Forums
- Staff
- Leaderboard
- Guidelines
- Terms of Service
Activity
- Back
- All Activity
- Search
Join our Discord!

×

Create New...

Important Information

We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.