In my attempts to protect my database from mySQL injection I have created another problem for myself....
Currently all user inputted strings go through this function;
Code: function cleanQuery($string)
{
if(get_magic_quotes_gpc())
{
$string = stripslashes($string);
}
$string = mysql_real_escape_string($string);
$string = htmlentities($string);
return $string;
}
In the most, its great HOWEVER... there are three fields which I would like the user to be able to enter spaces in. An "About me" field for example, if it is run through the above function the new lines are replaced with a 'r' which i assume is "created" by the mysql_real_escape.
Question;
1) Should i run the function on every user variable?
2) Is there a safe "fix" or something alternative which i can run on the three fields which may require line breaks.
thanks.
Help With editting and deleting form
Hallo !!So look at this image :http://img194.imageshack.us/img194/8272/snapshot5f.png This table prints the titles of entries from a table in a database.. The code that i use for this table is this
that old Malformed Headers problem again!!!!! HELP!!!!!!
I've read the http://www.phpfreaks.com/forums/index.php/topic,37442.0.htmlI don't think my code outputs any blank lines (I can't find it anyway)I am including a functions file in my project all over
First root of a number
Hi, I can't find any function in php to give me the first root of a number.Is there any built-in function for it? For example: 81 => 39 => 364 => 2256 => 2I wrote this
Sharing PHP Sessions Across Domains
I am in the process of writing a script to share a php session across various domains I have.The problem I have, is getting php to access the php session. It gives me a persmission error. It seems the
Slashes
Have a small problem and I'm not able to understand why I'm getting the results I'm getting... and it's all down to darn slashes.The brand in question is O'BrienCode:
Retrieving Data from Two Different Databases
Hello All, Ran into another problem and would appreciate some help! I have two databases, publications_db (pub_id, title, author, yr, journal, num_pages) and
Pagination
Okay here is the page in question: http://blenderteachings.000a.biz/tutorials.hamishhill.phpI have the records in a database(tutorial name, username description etc). I am pulling these and displaying
Paypal
Hi all,I have an advanced basic knowledge of php I want to try something new for a site I am working on, its a members site with a monthly fee for being a member of the site. Basically what I want to
upgrade from 4.7 to ECC 6.0
Hi all,
Coding question?
Hey guys, I have a quick question. If I want to make a way for people to pay for health in my game, how would I go about coding that? Would be like this?Code: ($purchace = 1000000) ==
