adam291086 Posted December 10, 2007 Share Posted December 10, 2007 Ok i have a rich text editor linked up to a database. This submits all the html coding for my websites content. How would i go about validating this to prevent mysql injections? Quote Link to comment Share on other sites More sharing options...
rajivgonsalves Posted December 10, 2007 Share Posted December 10, 2007 the same way you'd do it for any other page, in your php page Quote Link to comment Share on other sites More sharing options...
trq Posted December 10, 2007 Share Posted December 10, 2007 I wouldn't see it would be any different to how you would normally tackle it. Take a look at mysql_real_escape_string. Quote Link to comment Share on other sites More sharing options...
adam291086 Posted December 10, 2007 Author Share Posted December 10, 2007 could the code execute? This is because any php or mysql will be within its <?php ?> Quote Link to comment Share on other sites More sharing options...
trq Posted December 10, 2007 Share Posted December 10, 2007 could the code execute? Not likely. Not unless your running anything through eval for some strange reason. Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.