Hi list
We here at ZeroCinco Propaganda are looking for a PHP Developer to
assist me in our web projects
Must have a good knoledge of PHP and mySQL, and integration with
ActionScript.
Also you need to be confortable using Photoshop.
If you are interested send your resume to
[EMAIL PROTECTED]
and simple way to convert the row string into a INSERT
query ?
Should I try some manipulation first with the TXT file ?
TIA
Marcelo Wolfgang
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
FIELDS TERMINATED BY
'^' LINES STARTING BY '20';
$Query = mysql_query($SQL);
TIA
Marcelo Wolfgang
Jason Pruim wrote:
On Oct 18, 2007, at 2:29 PM, Marcelo Wolfgang wrote:
Hi all,
I need some helps/tips to know if a transition from a txt file to a
sql database is viable to do.
I have
may get the
wrong one, so that's the why of my question.
TIA
Marcelo Wolfgang
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Wow,
Thanks for all the ideas, I'll explore all of them. I have the content
people messing with the adm so it's hard to try things I don't fully
understand by now
About the sql injection, the db user I set for this has only select
privileges, should I be worried even with this ?
Thanks
Richard Lynch wrote:
Browsers will probably NOT populate these reliably...
Mac Safari, might, for example, choose application/x-pdf for the PDF
file.
You really can't rely on 'type' to be useful in any way, shape, or form.
Thanks for the tips, I've deleted this check, and changed how I
,$user,$pass) or die (mysql_error());
mysql_select_db ($db_table);
$SQL = SELECT * FROM tb_noticias $whereClause ORDER BY auto_id DESC;
$news_Query = mysql_query($SQL);
$recordCount = mysql_numrows($news_Query);
mysql_close();
?
TIA
Marcelo Wolfgang
--
PHP General Mailing List (http://www.php.net
is
there for debug only
?
TIA
Marcelo Wolfgang
--
PHP General Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
WHERE `auto_id` = $id);
mysql_close();
?
The page is executed, but it don't update the table ... I've tried with
the '' and without it ( the phpmyadmin page is where I got the idea of
using the '' ). Any clues ?
Also, how can I make a redirect after the query has run ?
TIA
Marcelo Wolfgang
Hi,
It's fixed, I think the problem where at the '==' ... I have to remember
that in PHP this is like ActionScript.
Also, what if $_GET['act'] is neither 'a' or 'd'?
Again, what if $_GET['id'] is null?
The only way to not be 'a' or 'd' or to be null is if someone mess with
url, which
and what if $_GET['id'] is something like
1; DROP TABLE tb_emails;
??
SQL injection just waits to happen
I think tha tit will be too much of a hacker effort just to kill a table
of contact emails, and also he will have to guess ( is there other way
? ) the table name, but just to be on a
and what if $_GET['id'] is something like
1; DROP TABLE tb_emails;
??
SQL injection just waits to happen
Something I just thought, he could do a drop table inside an update
statement ? because the query is :
UPDATE tb_emails SET bol_active = $action WHERE auto_id = $id
so if he changed
12 matches
Mail list logo
