Daniel Brown wrote:
On Sun, Feb 20, 2011 at 14:11, Nazish Zafar<naz...@jhu.edu>  wrote:


$insert = "INSERT INTO user_info
(login, password)
VALUES
("$login", "$password");

     You're using double-quotes to encapsulate your $insert variable
data, then never closing them.  What's more, you're also using
double-quotes to encapsulate each individual variable in the query.
Rewrite $insert to this:

         $insert = "INSERT INTO user_info(login,password)
VALUES('".mysql_real_escape_string($login)."',"'.mysql_real_escape_string($password)."')";


Look at that one more time Dan. ;-)

Donovan




--
D Brooke

--
PHP Database Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

Reply via email to