Mysql_escape_string

techker · December 1, 2008

hey guys is it possible to do this?

like(cause i can't explain the srting if it is the real name..lol)

link :http://site.ca/admin/GymGraph/grapht.php?id=4,trainer=mike

$trainer= mysql_escape_string($_GET['trainer']); 
$id = mysql_escape_string($_GET['id']); 

$sql = "SELECT *  
FROM `$trainer`  
WHERE `id`= $id"  
; 
$res= mysql_query($sql); 
$row= mysql_fetch_assoc($res);?>

i changed it to

mysql_real_escape_string and still nothing.

it is as soon as i pass 2 infor in the link it does not work..

waynew · December 1, 2008

link :http://site.ca/admin/GymGraph/grapht.php?id=4&trainer=mike

rhodesa · December 1, 2008

yeah, & not ,

waynew · December 1, 2008


$trainer= mysql_real_escape_string($_GET['trainer']); 
$id = mysql_real_escape_string($_GET['id']); 

$sql = "SELECT *  
FROM `$trainer`  
WHERE `id`= $id"  
; 
$res= mysql_query($sql); 
$row= mysql_fetch_assoc($res);?>

techker · December 1, 2008

so with & works if i remove the space..

this is my link to the file

<a href="grapht.php?trainer=<? echo $row['trainer']?>&id=<? echo $row['id'] ?>" target="_blank">

in the browser it gives

http://site.ca/admin/GymGraph/grapht.php?trainer=mike%20&id=4

the %20

techker · December 1, 2008

szo i just inverted the id with training and it works fine now!lol

thx for the quick reply!i can always count on this forum!!

Sign In

Mysql_escape_string

Recommended Posts

techker

Link to comment

Share on other sites

waynew

Link to comment

Share on other sites

rhodesa

Link to comment

Share on other sites

waynew

Link to comment

Share on other sites

techker

Link to comment

Share on other sites

techker

Link to comment

Share on other sites

Archived

Browse

Activity

Important Information