Larry Knibb wrote:
>
> Btw, be careful where you get your $id and $group_id variable content
> from. If you are embedding these in a string (e.g. in a Perl script)
> then you should check these are numeric before you use them. Otherwise
> this is how SQL injection attacks happen, e.g. I might submit a
> malicious ID containing SQL commands which could screw up your
> database.
>
I'm developing a mobile app with a JavaScript framework: are attacks
possible too?
--
View this message in context:
http://old.nabble.com/how-to-perform-join--tp33280818p33284030.html
Sent from the SQLite mailing list archive at Nabble.com.
_______________________________________________
sqlite-users mailing list
sqlite-users@sqlite.org
http://sqlite.org:8080/cgi-bin/mailman/listinfo/sqlite-users
