Logician Posted November 10, 2011 Share Posted November 10, 2011 I use PHP's mysql_real_escape_string() when using MySQL's INSERT. What I am wondering is if PHP's mysql_real_escape_string() should also be used when using MySQL's DELETE? Quote Link to comment Share on other sites More sharing options...
trq Posted November 10, 2011 Share Posted November 10, 2011 You need to escape ALL external data that you use in ALL queries. Quote Link to comment Share on other sites More sharing options...
Logician Posted November 10, 2011 Author Share Posted November 10, 2011 When I used it in an interpolated PHP thing, it broke my page. Thanks for the information. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.