Member Avatar

hi, seems mysql_escape_string was deprecated ([http://php.net/manual/en/function.mysql-escape-string.php](http://php.net/manual/en/function.mysql-escape-string.php)) is there any alternative method? hope php developers can share with me. tq

Member Avatar
+0 forum 4
Member Avatar

hey people, i have the following problem, i'm setting up a webshop with over 2k items and every 6months the prices are changing(wines) so i was wondering how to import an xml file into a mysql database without having to go in phpmyadmin. this because i don't want the people for who i'm making the website have access there to destroy the whole database. this is what i got so far: [CODE]<?php include "header.php"; ?> <br><br><br> <h1>Database updaten</h1> <form enctype="multipart/form-data" action="import.php" method="post"> <input type="hidden" name="MAX_FILE_SIZE" value="20000000" /> <table width="600"> <tr> <td>Names file:</td> <td><input type="file" name="file" /></td> <td><input type="submit" value="Upload" /></td> …

Member Avatar
+0 forum 32
Member Avatar

Its a scenario of message and the reply post for articles and the posted messages are stored in the database. This message as a parameter is passed to the script (lets call is 'insert.php') doing this insertion is called from the js function onclick of the submit. Inside this 'insert.php', before inserting into the database there is just a mysql_real_escape_string() on that message string passed to it. It replaces the comma with the backslash & comma.And the same is assigned to the hidden variable in the form in the "insert.php" the target of it is the ref i.e. original script …

Member Avatar
+0 forum 5

The End.