Thread: PHP & Mysql injection in phplist
View Single Post
Old Nov 7th, 2006, 1:52 PM   #2
Jimbo
Battle Programmer
 
Jimbo's Avatar
 
Join Date: Feb 2006
Location: Bellevue, WA, USA
Posts: 770
Rep Power: 3 Jimbo is on a distinguished road
You should probably use mysql_real_escape_string() and that should mostly cover you from user input.
__________________
<insert disclaimer here>
<insert shameless plug for Visual Studio here>
Jimbo is offline   Reply With Quote