php - How to use mysqli_real_escape_string for int value? -


i have $search= mysqli_real_escape_string($conn,$_post['search']); now, want know if can converted int , safe option avoid sql injection.

$sql ="select * basket quantity =$search";

**here quantity int

yes, strictly speaking, casting variable (int) or intval() removes risk of variable causing sql injection.

but not reason avoid using query parameters.

for 1 thing, might have both string , integer variables combine sql statement. makes code more complex use different methods of making variables safe, depending on type. if use query parameters variables, simplify code.

please right.


Comments

Post a Comment

Popular posts from this blog

resizing Telegram inline keyboard -

telegram's inline keyboard great feature lots of different use cases. inline buttons added list of items this: inline_keyboard = [[inlinekeyboardbutton(text="button", callback_data="button"), inlinekeyboardbutton(text="reset",callback_data="reset")]] inline_keyboard_markup = inlinekeyboardmarkup(inline_keyboard) update.message.reply_text("hi", reply_markup=inline_keyboard_markup) the above code adds 2 buttons each half width of chat screen. i know the normal keyboard button there resize_keyboard parameter somehow can used. my question is there way resize inline buttons ? example make full width or quarter width. unfortunately, can't now. :( you can suggest @botsupport , might add feature next version.
Read more

javascript - How to bind ViewModel Store to View? -

i'm pretty new ext js , trying embed multiselect inside panel . the viewmodel has stores property can see here: ext.define('test.view.controls.search.searchfiltermodel', { extend: 'ext.app.viewmodel', alias: 'viewmodel.filter', data: { title: '' }, stores: { test: { fields: [ 'id', 'name' ], proxy: { type: 'ajax', url: 'api/test', reader: 'array' }, autoload: true } } }); i bind in view this: viewmodel: { type: 'filter' }, layout: 'fit', border: 1, plain: true, scrollable: 'y', layout: 'fit', bind: { title: '{title}', }, items: { xtype: 'multiselect', scrollable: false, allowblank: true, ddreorder: true, bind: { store: '{test}' }, valuefield: 'id', displayfield: 'name' } ...
Read more

javascript - Solution fails to pass one test with large inputs? -

function birthdaycakecandles(n, ar) { // complete function ar.sort(); var biggestno = ar[(ar.length - 1)]; var total = 0; (var = 0; < ar.length; i++) { if (ar[i] === biggestno) total++; } return total; } here's problem - https://www.hackerrank.com/challenges/birthday-cake-candles/problem there no need sort array, can problem in o(n) times function birthdaycakecandles(arr, n) { var total = 0; var len = arr.length; (var = 0; < len; i++) { if (ar[i] === n) total++; } return total;
Read more