PDA

View Full Version : SQL Injection


nets
17-12-2005, 03:02 PM
Is this good enough SQL Injection prevention?

<?php
$valid = $_GET['page'];
$valid2 = mysql_real_escape_string($valid);
?>
Valid2 will be used in a MySQL query.
Splinter
17-12-2005, 09:42 PM
It should do yes.
Sygon
17-12-2005, 09:54 PM
charlie josh has been teaching me php :D
Dan Williamson
17-12-2005, 10:13 PM
Looks good enough too me :p

- Dan

Want to hide these adverts? Register an account for free!