I need of some help here
View Single Post
07-01-2008, 07:30 PM
Join Date: Sep 2007
Location: Sweden, Stockholm
Originally Posted by
Tanax: In his copy of the code there is a reason to use it, because he doesn't run any checks to make sure that it's an integer, so they could very well try and insert malicious data. In mine it's casted to an integer so no it's not needed, and I omitted it.
But it's totally useless to do a mysql_real_escape_string when it's an integer. It's better just to check if it's an integer, takes less loading time and is far more cleaner. Not to mention; easier.
And thanks for the info about braces, didn't know that!
The Following User Says Thank You to Tanax For This Useful Post:
View Public Profile
Send a private message to Tanax
Visit Tanax's homepage!
Find More Posts by Tanax