TalkPHP - View Single Post

sLysdal · 11-08-2009, 05:07 PM

try changing

PHP Code:


			
mysql_query($sql);

to

PHP Code:


			
mysql_query($sql) or die(mysql_error());

what does that output?

and as adamdecaf said, the code can easily be injected

11-08-2009, 05:07 PM	#5 (permalink)
sLysdal The Wanderer Join Date: Nov 2009 Location: Denmark Posts: 5 Thanks: 1	try changing PHP Code: `mysql_query($sql);` to PHP Code: `mysql_query($sql) or die(mysql_error());` what does that output? and as adamdecaf said, the code can easily be injected