[HELP] How do I protect against a $_GET variable when using MySQLi [HELP]

Trinix · Mar 13, 2013

Hey,

So i'm doing a small project and I wondered how I can protect a $_GET variable in this class:

PHP:

<?php
 
class application {
 
public $config;
 
public function __construct() {
$this->loadConfig();
 
if($_GET['p'] == '' || strlen($_GET['p']) < 1) {
$this->url = 'index';
} else {
$this->url = $_GET['p'];
}
}
}
 
?>

I also have a MySQLi class.

Markshall · Mar 13, 2013

I'm not the best there is at MySQLI but I believe it is

PHP:

$dbclass->escape_string($_GET['p']);

Ecko · Mar 14, 2013

iiM4RKx said:
I'm not the best there is at MySQLI but I believe it is

PHP:

$dbclass->escape_string($_GET['p']);

That's correct, just change $dbclass to whatever is establishing the MYSQLi connection.

[HELP] How do I protect against a $_GET variable when using MySQLi [HELP]

Trinix

Member

Markshall

Русский Стандарт

Ecko

23:37 [autobots] -!- eckostylez [[email protected]]

Users who are viewing this thread

Latest posts

Connect with us

Newest members