FUDforum
Fast Uncompromising Discussions. FUDforum will get your users talking.

Home » FUDforum Development » Bug Reports » 1.1.1 - SQL data not escaped [when magic quotes turned off]
Show: Today's Messages :: Polls :: Message Navigator
Return to the default flat view Create a new topic Submit Reply
1.1.1 - SQL data not escaped [when magic quotes turned off] [message #406] Mon, 11 February 2002 17:17 Go to previous message
ironstorm is currently offline  ironstorm   Canada
Messages: 89
Registered: February 2002
Location: Toronto, Ontario, Canada
Karma:
Member

When make a forum called GED's forum, or set the description
to include and apostray I get an error similar to the
following:

Query Failed: INSERT INTO fud_cat (name, description, allow_collapse, default_view, creation_date, view_order, hidden) VALUES('GED's Forum','','Y','OPEN','1013447434','4','N')
Reason:
From: f:/php4/!forums/htdocs/adm/admcat.php

One could require magic quotes to fix this or wrap
the SQL fields to be inserted using addslashes like
follows:

myAddSlashes($st) {
if (get_magic_quotes_gpc()==1) {
return $st;
} else {
return AddSlashes($st);
}
}
Very true, curre
[Message index]
 
Read Message
Read Message
Previous Topic: Win2K - Fixes to install 1.1.1
Next Topic: Comments on installing FUD 1.1.1 on Win2K
Goto Forum:
  

-=] Back to Top [=-
[ Syndicate this forum (XML) ] [ RSS ]

Current Time: Thu Dec 12 11:30:15 GMT 2024

Total time taken to generate the page: 0.03926 seconds