Thread: Blocking unless the server wants it
View Single Post
  #5 (permalink)  
Old 06-25-09, 01:56 PM
smithygotlost smithygotlost is offline
Coding Addict
  
Join Date: Jul 2006
Location: United Kingdom
Posts: 345
Thanks: 7
Thanked 0 Times in 0 Posts
excellent star as always nico

now whats the best way to stop sql injects ??

ive tried things like

Code:
$profile_text = preg_replace('/\'\'/', '\'', $profile_text);
if ($_POST["text"] != ""){
	$new_profile_text = mysql_real_escape_string($_POST["text"]);
ect what else can i use ??

Thanks
Mike
__________________
Make People Friendly Say " Thanks "
Reply With Quote