Re: How to change this query from PDO to SQLi? Programming Web Development by Smartfitness33 SQLi and PDO have their favorable circumstances: PDO will take a … How to change this query from PDO to SQLi? Programming Web Development by R_4 … but it is in PDO and my work is in sqli here the query : if(isset($_SESSION['user'])){ $getuser=$con->… pls check this piece of code.. Programming Web Development by puvi … $total[] = $_POST['total']; $i=0; foreach($_POST['component'] as $item) { $sqlI="select * from component_item where name='".$item."'"…;; $resI=mysql_query($sqlI); $rowI=mysql_fetch_array($resI); $itemId[]=$rowI['id']; } foreach($_POST['quantity'] as… Re: pls check this piece of code.. Programming Web Development by diafol … looks a bit wasteful: [CODE]foreach($_POST['component'] as $item) { $sqlI="select * from component_item where name='".$item."'"…;; $resI=mysql_query($sqlI); $rowI=mysql_fetch_array($resI); $itemId[]=$rowI['id']; }[/CODE] You could have… prob with updating the table Programming Web Development by puvi …; } foreach($_POST['component'] as $item)//this data comes from dropdown { $sqlI="select id from component_item where name='".$item."…;'"; $resI=mysql_query($sqlI); $rowI=mysql_fetch_array($resI); $itemId[]=$rowI['id']; } /*for($i=0;$i… Multiple values sent to DB through selection of 1 or more checkboxes Programming Web Development by axxxpua …) { echo "<li>$value</li>"; $sqli="INSERT into client VALUES('$clientid','$name','$value')"; $result…=mysqli_query($mysqli,$sqli); } echo"</ul>"; } ?> </body>… Re: Multiple values sent to DB through selection of 1 or more checkboxes Programming Web Development by rpv_sen …]); echo "<li>$value</li>"; $sqli="INSERT into client VALUES('$clientid','$name','".$worktype[$i…]."')"; $result=mysqli_query($mysqli,$sqli); } } ?> </body> </html>[/CODE… Re: Multiple values sent to DB through selection of 1 or more checkboxes Programming Web Development by diafol …]); echo "<li>$value</li>"; $sqli="INSERT into client VALUES('$clientid','$name','".$worktype[$i…]."')"; $result=mysqli_query($mysqli,$sqli); } }[/CODE] You could end up running many SQL queries with… Log in script issues Programming Web Development by stokie-rich …some basic sanitizing $username = stripslashes($username); $password = stripslashes($password); $sqli = "select * from 'users' where username = '$username' …and password = '$password'"; $result = mysqli_query($sqli) or die ( mysqli_error() ); $count = 0; while ($line = … Re: Log in script issues Programming Web Development by Sammys.Man try changing your dashes you have $sqli = "select * from 'users' where username = '$username' and password = '$password'"; try (look at the users) $sqli = "select * from `users` where username = '$username' and password = '$password'"; get data from two tables for specific ticket id and username Programming Web Development by ianhaney …to connect to MySQL! ". mysqli_connect_error(); } $sqli = "SELECT support_tickets.ticket_id, support_ticket_files.file_name, support_tickets…"]."'"; $res = mysqli_query($con, $sqli); while ($row = mysqli_fetch_array($res)) { echo &… INSERT contents of an array into MSSQL database Programming Web Development by osirion666 …, timesent)VALUES ('number[i]', 'text', 'from', GETDATE())"; access.insert(sqli); } [/CODE] Please note Numbers is the array any help would… Re: INSERT contents of an array into MSSQL database Programming Web Development by kvprajapati …, timesent)VALUES ('number[i]', 'text', 'from', GETDATE())"; access.insert(sqli); } [/CODE] [CODE=Java] String sql=""; for(int i… SQL and PHP connection help Programming Web Development by stokie-rich … help me, someone has suggested that i change sql to sqli Re: SQL and PHP connection help Programming Web Development by Bob Hensley … help me, someone has suggested that i change sql to sqli That person gave you very valuable advice. The original MySQL… Multiple Excel Columns as 1 SQL column Programming Web Development by websponge I import a spreadsheet (csv) into my sqli database (keeps a track of all our firewalls) there are … Help securing POST ! Programming Web Development by zekstein … input on my website and i want to prevent xss, sqli and other things like that. But i still want my… White hat hacker warns CMS plugins are leaving the security door wide open Programming Web Development by happygeek … platform itself has by default. "By exploiting XSS and SQLi flaws in the plugins, the attacker can get at the… Fatal error call to a member function Programming Web Development by spud91 … the code that I'm currently using: <?php $results = $sqli = ("SELECT * FROM `books` ORDER BY `ISBN` ASC"); if… Re: Fatal error call to a member function Programming Web Development by diafol What's this supposed to be doing? $results = $sqli = ("SELECT * FROM `books` ORDER BY `ISBN` ASC"); Looks like it's just storing a string. Common Issues with MySQL and PHP Programming Web Development by diafol …/sql/sql_injection.asp](http://www.w3schools.com/sql/sql_injection.asp) ![sqli.fw_.png](/attachments/large/0/38d6c5afcfa353ca2452e22055e383ca.png "align-center… Re: Ascii in java Programming Software Development by Hiroshe …;65") to try to prevent SQLi/XSS. One of my favourite methods of preventing SQLi would be using [Ascii85](http://en… Re: insert job details Programming Web Development by shivya_1 …$industry=mysqli_real_escape_string($_POST['industry']); $area=mysqli_real_escape_string($_POST['area']); $sqli = "INSERT INTO 'job_detail'('job_title', 'vacancies', 'keywords… '$location', '$industry', '$area')"; if($conn->query($sqli) == true) { echo "Job Posted."; } else… Re: insert job details Programming Web Development by Traevel … a general PHP error because in `if($conn->query($sqli) == true)` you're sending an object that doesn't exist… anymore: `$sqli`; Did you add a line like `display_errors = on` to your… Re: New PHP User Needs Some Guidance Programming Web Development by bigjoke hi there, dont know much about sqli stuff at the moment but a quick looksie at your … Re: IIS showing same file being accessed many times within 20 secs Hardware and Software Microsoft Windows by lasitha2005d … giving errors: May be a DDOS as well or an SQLI (since you do not run any indexers or robots to… Re: phpcode unable to connect to My SQL --- OOP project Programming Web Development by kakalahori … im done understanding the basics i could start learning my sqli or PDo wrapper ....because from few days back i knew… Re: updating multiple fields in the table Programming Databases by Rahul47 …; . mysqli_connect_error(); } ?> Morever your code is vulnerable to XSS and SQLI as you havent sanitized your data beofre using in UPDATE… Re: Ascii in java Programming Software Development by Slavi Thanks guys for answering :) @Hiroshe, I am not trying to prevent SQLI/XSS but to simulate it, we have some vulnerable servers but they have some filtering, so using base 10 or Hx would be one of the solutions. I'll try to get some code running on this thanks Re: Program State - save as? Programming Software Development by Slavi … password, thats how people should do it so even if sqli(for example) is successful the acquired passwords won't be…