nets
17-12-2005, 03:02 PM
Is this good enough SQL Injection prevention?
<?php
$valid = $_GET['page'];
$valid2 = mysql_real_escape_string($valid);
?>
Valid2 will be used in a MySQL query.
<?php
$valid = $_GET['page'];
$valid2 = mysql_real_escape_string($valid);
?>
Valid2 will be used in a MySQL query.