Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in

Congratulations biv343 on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Home
Search

Search results for query: *

Users: shartken
Order by date

ereg format to prevent SQL injection

Wait, I am using PHP v3 and I can't run this function. If magic quotes are turned on, do I even need to do this. Or should I just use the strip_slashes functioN?
- shartken
- Post #4
- Jan 4, 2005
- Forum: PHP
ereg format to prevent SQL injection

Thanks.
- shartken
- Post #3
- Jan 4, 2005
- Forum: PHP
ereg format to prevent SQL injection

I am trying to run the following function to prevent sql injection in the body of a forum message: <?php ereg((SELECT\s[\w\*\)\(\,\s]+\sFROM\s[\w]+)| (UPDATE\s[\w]+\sSET\s[\w\,\'\=]+)| (INSERT\sINTO\s[\d\w]+[\s\w\d\)\(\,]*\sVALUES\s\([\d\w\'\,\)]+)| (DELETE\sFROM\s[\d\w\'\=]+), "SELECT * FROM...
- shartken
- Thread
- Jan 3, 2005
- Replies: 5
- Forum: PHP

Part and Inventory Search

Home
Search

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn more…

Top