-
Notifications
You must be signed in to change notification settings - Fork 52
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Part - 36 mysqli_real_escape_string gives me foreward slash #124
Comments
Its probably because your host has magic quotes enabled. Are you running the variable through stripslashes() function to remove the On Tue, May 26, 2015 at 9:27 AM, asani notifications@github.com wrote:
|
Ok so its a host issue? well im using a free host for now...you think this will be resolved when i switch to a paying host? And im kind a a newbie so you question doesnt mean anything now..where should i refere to the stripslashes() could you make a code where it is used as a reference? and respect for your quick responses dude...much appriciated! |
I am pretty sure you can resolve the issue by removing the I would try removing the functions and see if you can break the page by On Tue, May 26, 2015 at 10:04 AM, asani notifications@github.com wrote:
|
ok so if magic quotes are not enabled in another hosting company i would have to add the mysqli_real_escape_string() function? And just so i dont mess up my code to the point where i cant find my problem, is this wjat you mean? (im not using a "label" column by the way) From:
Thanks again |
Just comment out the old code so you have a reference incase you need to /* $title = mysqli_real_escape_string($dbc, $_POST['title']); */ Then write the new code like this: $title = $_POST['title']; Now that is the raw data, so try and add some quotes to test the new Regards, Jason M On Tue, May 26, 2015 at 10:55 AM, asani notifications@github.com wrote:
|
Worked like a charm! Thank you very much!!!! You rock!! |
you should be carefull in deleting the filters. If someone get's access to the file..... like a method post from another page, he could remove all your database data 😢 |
Here's the culprit: On Tue, May 26, 2015 at 7:15 PM, creptor notifications@github.com wrote:
|
My recomendation is to use PD: w3schools is not the best place to find anwsers, but it's the first match in google :3 |
I pretty sure that wont work as intended for this particular problem. That On Tue, May 26, 2015 at 8:48 PM, creptor notifications@github.com wrote:
|
The problem is that you can't have html code for correctly sanitized strings. PD: I'm not sure if the best option is to use |
When i run the form with Alans's Page i get Alan's Page! I have run down the code but i cant seem to find any errors in my syntax. Is this something that mysql does wrong or what? Should be a simple thing to resolve but i just cant pin it down!! anyone plz help...everthing is superb exept for that little bug!!
The text was updated successfully, but these errors were encountered: