-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Please tell me this is sample code and not intended for a live environment any time soon...
If not, you may want to read this. http://xkcd.com/327/ On Wed, Nov 26, 2008 at 12:22 PM, Aaron Cooper wrote: [snip] > $firstname = $_POST['firstname']; > $surname = $_POST['surname']; > $email = $_POST['email']; > $company = $_POST['company']; > $date_registered = date("Y-m-d H:i:s"); > $password = md5($_POST['auto_password']); [snip] > $stmt->bindParam(':firstname', $firstname); > $stmt->bindParam(':surname', $surname); > $stmt->bindParam(':email', $email); > $stmt->bindParam(':company', $company); > $stmt->bindParam(':password', $password); > $stmt->bindParam(':date_registered', $date_registered); > $stmt->execute(); ...or does bindParam() sanitize the input? - -- Regards Gold Evolved Development +64 21 248-4653 http://evolved.net.nz/ [EMAIL PROTECTED] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) Comment: http://getfiregpg.org iD8DBQFJLKu5kVfZisani9sRAmmrAJ9WzT3N5mM/mV6ZZo/tHaWrOqXeywCgjtlP jJhPPrYUWfzUZVasGl7rBIs= =Qc1k -----END PGP SIGNATURE----- --~--~---------~--~----~------------~-------~--~----~ NZ PHP Users Group: http://groups.google.com/group/nzphpug To post, send email to [email protected] To unsubscribe, send email to [EMAIL PROTECTED] -~----------~----~----~----~------~----~------~--~---
