OK, I know and understand how to prevent SQL injection with prepared statements:
But... I have a web page that has text boxes that are dynamically built. Then a SQL statement is built off those text boxes that are created. So not knowing how many boxes are created how can I handle the prepared statements inside a while loop? Any good ideas or example would be fan-friggin-tastic. Thanks.