About 70 results for sqli - Page 1

Re: Log in script issues Programming Web Development by Sammys.Man try changing your dashes you have $sqli = "select * from 'users' where username = '$username' and password = '$password'"; try (look at the users) $sqli = "select * from `users` where username = '$username' and password = '$password'"; Log in script issues Programming Web Development by stokie-rich …some basic sanitizing $username = stripslashes($username); $password = stripslashes($password); $sqli = "select * from 'users' where username = '$username' …and password = '$password'"; $result = mysqli_query($sqli) or die ( mysqli_error() ); $count = 0; while ($line = … Re: Multiple values sent to DB through selection of 1 or more checkboxes Programming Web Development by diafol …]); echo "<li>$value</li>"; $sqli="INSERT into client VALUES('$clientid','$name','".$worktype[$i…]."')"; $result=mysqli_query($mysqli,$sqli); } }[/CODE] You could end up running many SQL queries with… Re: Multiple values sent to DB through selection of 1 or more checkboxes Programming Web Development by rpv_sen …]); echo "<li>$value</li>"; $sqli="INSERT into client VALUES('$clientid','$name','".$worktype[$i…]."')"; $result=mysqli_query($mysqli,$sqli); } } ?> </body> </html>[/CODE… Multiple values sent to DB through selection of 1 or more checkboxes Programming Web Development by axxxpua …) { echo "<li>$value</li>"; $sqli="INSERT into client VALUES('$clientid','$name','$value')"; $result…=mysqli_query($mysqli,$sqli); } echo"</ul>"; } ?> </body>… prob with updating the table Programming Web Development by puvi …; } foreach($_POST['component'] as $item)//this data comes from dropdown { $sqlI="select id from component_item where name='".$item."…;'"; $resI=mysql_query($sqlI); $rowI=mysql_fetch_array($resI); $itemId[]=$rowI['id']; } /*for($i=0;$i… Re: pls check this piece of code.. Programming Web Development by diafol … looks a bit wasteful: [CODE]foreach($_POST['component'] as $item) { $sqlI="select * from component_item where name='".$item."'"…;; $resI=mysql_query($sqlI); $rowI=mysql_fetch_array($resI); $itemId[]=$rowI['id']; }[/CODE] You could have… pls check this piece of code.. Programming Web Development by puvi … $total[] = $_POST['total']; $i=0; foreach($_POST['component'] as $item) { $sqlI="select * from component_item where name='".$item."'"…;; $resI=mysql_query($sqlI); $rowI=mysql_fetch_array($resI); $itemId[]=$rowI['id']; } foreach($_POST['quantity'] as… Common Issues with MySQL and PHP Programming Web Development by diafol …/sql/sql_injection.asp](http://www.w3schools.com/sql/sql_injection.asp) ![sqli.fw_.png](/attachments/large/0/38d6c5afcfa353ca2452e22055e383ca.png "align-center… Re: Fatal error call to a member function Programming Web Development by diafol What's this supposed to be doing? $results = $sqli = ("SELECT * FROM `books` ORDER BY `ISBN` ASC"); Looks like it's just storing a string. Fatal error call to a member function Programming Web Development by spud91 … the code that I'm currently using: <?php $results = $sqli = ("SELECT * FROM `books` ORDER BY `ISBN` ASC"); if… White hat hacker warns CMS plugins are leaving the security door wide open Programming Web Development by happygeek … platform itself has by default. "By exploiting XSS and SQLi flaws in the plugins, the attacker can get at the… Help securing POST ! Programming Web Development by zekstein … input on my website and i want to prevent xss, sqli and other things like that. But i still want my… Multiple Excel Columns as 1 SQL column Programming Web Development by websponge I import a spreadsheet (csv) into my sqli database (keeps a track of all our firewalls) there are … Re: SQL and PHP connection help Programming Web Development by Bob Hensley … help me, someone has suggested that i change sql to sqli That person gave you very valuable advice. The original MySQL… SQL and PHP connection help Programming Web Development by stokie-rich … help me, someone has suggested that i change sql to sqli Re: INSERT contents of an array into MSSQL database Programming Web Development by __avd …, timesent)VALUES ('number[i]', 'text', 'from', GETDATE())"; access.insert(sqli); } [/CODE] [CODE=Java] String sql=""; for(int i… INSERT contents of an array into MSSQL database Programming Web Development by osirion666 …, timesent)VALUES ('number[i]', 'text', 'from', GETDATE())"; access.insert(sqli); } [/CODE] Please note Numbers is the array any help would… Re: insert job details Programming Web Development by Traevel … a general PHP error because in `if($conn->query($sqli) == true)` you're sending an object that doesn't exist… anymore: `$sqli`; Did you add a line like `display_errors = on` to your… Re: insert job details Programming Web Development by shivya_1 …$industry=mysqli_real_escape_string($_POST['industry']); $area=mysqli_real_escape_string($_POST['area']); $sqli = "INSERT INTO 'job_detail'('job_title', 'vacancies', 'keywords… '$location', '$industry', '$area')"; if($conn->query($sqli) == true) { echo "Job Posted."; } else… Re: Ascii in java Programming Software Development by Hiroshe …;65") to try to prevent SQLi/XSS. One of my favourite methods of preventing SQLi would be using [Ascii85](http://en… Re: stop sql injection while using mysql_connect Community Center by abubaker_2 Thank you for replying and thak for referting its deprecated but where i work they dont want to change for now which i know its a security risk and and its has no parameterized quereies. So at the end cant use PDO or SQLi so the only think left is to check every user input for sql quereies :( Re: insert job details Programming Web Development by shivya_1 …','$industry','$area')"); $stmt->execute(); if($conn->query($sqli) == true) { echo "Job Posted."; } else { echo "Error… Re: insert job details Programming Web Development by shivya_1 …','$industry','$area')"); $stmt->execute(); if($conn->query($sqli) == true) { echo "Job Posted."; } else { echo "Error… Re: Multiple image upload with multiple inputs and multiple directory Programming Web Development by series …', '$oresult2', '$dob', '$filePath', '$total', '$appno', '$date', '$time', '$status', '$examdate')"; $sqli = mysql_query ("UPDATE regcode SET status = 'used' WHERE code = '$code_id… Re: Multiple image upload with multiple inputs and multiple directory Programming Web Development by Sadiq_2 …', '$oresult2', '$dob', '$filePath', '$total', '$appno', '$date', '$time', '$status', '$examdate')"; $sqli = mysql_query ("UPDATE regcode SET status = 'used' WHERE code = '$code_id… Re: PHP 5 Rating System with Comment Box. AJAX request issue Programming Web Development by scubbastevie With regards to changing to SQLI I definitely do not have time to change my whole project to these, I only have a few days left, well a matter of hours actually as I work full time and can only work on this a night as part of a course. I will use the new functions in future if I ever start another project Re: Sql to multidimensional array Programming Web Development by Kristiano Thanks! Since i use sqli, what function to be used instead of fetch? Im currently … Re: Looking for help on doing a simple category script Programming Web Development by Simon180 maybe because am using mysql and no sqli Re: Program State - save as? Programming Software Development by Hiroshe … password, thats how people should do it so even if sqli(for example) is successful the acquired passwords won't be…