Skip to content
Permalink
Browse files Browse the repository at this point in the history
sql injection prevention
  • Loading branch information
jeff-kelley committed Dec 14, 2015
1 parent 4c4d882 commit c29e5c7
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions regionscrits.php
Expand Up @@ -70,6 +70,7 @@ function DatabaseForRegion($region) {
// Get region name from query string
$region = urldecode ($_SERVER['QUERY_STRING']);
if ($region=='') die ("You must specify a region");
$region = mysql_real_escape_string($region);

// Get region data
$query = "SELECT * FROM $robustDB.regions WHERE regionName='$region';";
Expand Down

0 comments on commit c29e5c7

Please sign in to comment.