| Re: Help required with UPDATE columns [message #179543 is a reply to message #179542] |
Tue, 06 November 2012 18:06   |
Shake
Messages: 40
Registered: May 2012
Karma:
|
Member |
|
|
El 06/11/2012 18:59, Thomas 'PointedEars' Lahn escribió:
> Shake wrote:
>
> Either one allows for SQL injection. The OP should read on Prepared
> Statements (but at least mysql_real_escape_string()) instead.
[...]
> The parentheses are unnecessary and misleading. The names should be
> backtick-quoted.
>
>> That's not a PHP problem. Is a SQL one.
>
> _MySQL_, and you do not appear to know either very well.
I just signaled the main error. That's doesn't mean I don't know very
well. And, the error, isn't _MySQL_ The error is in the SQL sentence.
And this sentence is wrong in MySQL... and in others SQL-DBs.
Rgds.
|
|
|
|
Calendar
Search
Help
Members
Register
Login
Home
]