Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations gkittelson on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Securely handling characters into Mysql

Status
Not open for further replies.
thedaver

thedaver

IS-IT--Management
Jul 12, 2001
2,741
US
I'm coding some PHP and MySQL work now. I have always just filtered out user input characters such as
" ' " ; - "

So as to avoid SQL injection. I now have a requirement to allow the apostrophe "'" to the input. Is it sufficient to use a PHP escaping command to allow the apostrophe? Just trying to be safe. Any external links on the topic would be welcome, my googling is coming up pretty poorly.

Surfinbox.com Business Internet Services - National Dialup, DSL, T-1 and more.
 
Sort by date Sort by votes
Status
Not open for further replies.

Similar threads

E
  • Locked
  • Question
MySQL calculator tools
Replies
0
Views
267
EdZzy
E
lupidol
  • Locked
  • Question
Cannot create new table in mySQL 3
Replies
6
Views
477
lupidol
lupidol
lupidol
  • Locked
  • Question
mysql cannot add rows with "UNION" 1
Replies
5
Views
432
Chris Miller
Chris Miller
dylim
  • Locked
  • Question
Why MySQL 5.7 is still getting updates
Replies
3
Views
351
spamjim
spamjim
dylim
  • Locked
  • Question
SQL_CALC_FOUND_ROWS still runs in MySQL 8.0.29
Replies
2
Views
496
dylim
dylim

Part and Inventory Search

Sponsor

Back
Top