Subj : Re: Quick reminder..
To   : apam
From : Spectre
Date : Wed Sep 20 2023 20:09:00

 ap> You need to use prepared statements, it's not a PHP or MySQL issue.

 ap> The way it is now, is very likely open to SQL injection attacks.

Input fields, which come from a form, are vetted by... whatever it is.. I can
recall reading something about it, but aside from that I didn't look into it
to much.

Injection has been tried before, at one stage there was some half a dozen
entries that were just chock full of crap..

I'm not familiar with "prepared statements" though.  Is there anything worth
looking at? Most of this work has just been trial and error..

Spec


*** THE READER V4.50 [freeware]
--- SuperBBS v1.17-3 (Eval)
 * Origin: Good Luck and drive offensively! (21:3/101)

.