There is a weird code here that I need to make work.. can you please help me correct it .
mysql_query("insert into table(column) values('$var[0]'));
There is a weird code here that I need to make work.. can you
Share
Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
There is a weird code here that I need to make work.. can you please help me correct it .
mysql_query("insert into table(column) values('$var[0]'));
It looks like you are missing the double quote
"at the end of your SQL string.While you’re at it, you should rewrite your query like so:
…unless you’ve already escaped
$var[0], you should pass all variables throughmysql_real_escape_stringbefore interpolating them into an SQL query, to prevent SQL injection attacks.