Nope, Practice example for ZCE
Thanks for your concern though. Aaron ----- Original Message ----- From: "Gold" <[EMAIL PROTECTED]> To: <[email protected]> Sent: Wednesday, November 26, 2008 2:51 PM Subject: [phpug] Re: PDO Prepared Insert Failing > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > Please tell me this is sample code and not intended for a live > environment any time soon... > > If not, you may want to read this. > http://xkcd.com/327/ > > On Wed, Nov 26, 2008 at 12:22 PM, Aaron Cooper wrote: > [snip] >> $firstname = $_POST['firstname']; >> $surname = $_POST['surname']; >> $email = $_POST['email']; >> $company = $_POST['company']; >> $date_registered = date("Y-m-d H:i:s"); >> $password = md5($_POST['auto_password']); > [snip] >> $stmt->bindParam(':firstname', $firstname); >> $stmt->bindParam(':surname', $surname); >> $stmt->bindParam(':email', $email); >> $stmt->bindParam(':company', $company); >> $stmt->bindParam(':password', $password); >> $stmt->bindParam(':date_registered', $date_registered); >> $stmt->execute(); > > ...or does bindParam() sanitize the input? > > - -- > Regards > Gold > Evolved Development +64 21 248-4653 > http://evolved.net.nz/ [EMAIL PROTECTED] > > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v1.4.6 (GNU/Linux) > Comment: http://getfiregpg.org > > iD8DBQFJLKu5kVfZisani9sRAmmrAJ9WzT3N5mM/mV6ZZo/tHaWrOqXeywCgjtlP > jJhPPrYUWfzUZVasGl7rBIs= > =Qc1k > -----END PGP SIGNATURE----- > > > --~--~---------~--~----~------------~-------~--~----~ NZ PHP Users Group: http://groups.google.com/group/nzphpug To post, send email to [email protected] To unsubscribe, send email to [EMAIL PROTECTED] -~----------~----~----~----~------~----~------~--~---
