asked on Filtering User Input
Hi Experts,
I have a textarea that the user needs to provide comments for a varchar(4000) MySQL field.
Using PHP, how can I filter(or better - escape) malicious or even naive input like a semicolon in a sentence.
For my particular scenario I cannot use any binding (at least I don't think I can), because I am updating up to 50 records with the same comment.
Actually, I know I can bind within my loop, but that would mean hitting the database up to 50 times
I have a textarea that the user needs to provide comments for a varchar(4000) MySQL field.
Using PHP, how can I filter(or better - escape) malicious or even naive input like a semicolon in a sentence.
For my particular scenario I cannot use any binding (at least I don't think I can), because I am updating up to 50 records with the same comment.
Actually, I know I can bind within my loop, but that would mean hitting the database up to 50 times
PHPMySQL Server
Last Comment
APD Toronto
ASKER CERTIFIED SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
SOLUTION
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
I forgot about using WHERE IN, which will make it possible for me to use binding.