>>
> There is more to SQL injection than getting the quoting correct. In my
> understanding, prepared statements handles the other problems associated
> with queries and SQL injection beyond just quoting. Here's a good
> tutorial on how this works:
>
> http://www.youtube.com/watch?v=bORZlmyDw0s
On Fri, Oct 07, 2011 at 12:46:52AM -0400, Govinda wrote:
> http://stut.net/2011/09/15/mysql-real-escape-string-is-not-enough/
>
> Hi everyone
>
> I have read many many articles and blog posts in the last few days to
> bolster my (still mostly newbie) understanding of the factors that
> play
> http://us.php.net/manual/en/function.simplexml-load-string.php#80855 maybe?
Thanks for that. I guess I should have scrolled a little further
down. It's so crazy that it works that way. Unless you export the
actual element (and not it's ancestors), you don't see the data at
all.
thnx,
Christo
On 6 October 2011 15:37, Andrew Mason wrote:
> Hello all,
> I am trying to use the wonderful SabreDAV library to create a webdav
> share. I have a demo up and running however the framework / class i'm
> using is namespaced, and SabreDAV unfortunately does not have a 5.3
> style namespace declarati
On 07/10/2011 05:46, Govinda wrote:
Hi everyone
I have read many many articles and blog posts in the last few days to bolster my (still mostly
newbie) understanding of the factors that play in to preventing various methods of SQL injection
prevention.. and by now I am well aware that most eve
5 matches
Mail list logo
