URL when I am editing a register of my database is / edit / 168 Examples). But if I give this URL to
/ edit / 168 ' or
/ edit / 168 = then give me the error of the database.
How can I validate the ID before searching in the database?
thanks :)
you can
id) {// remove invalid characters $ item = preg_replace ("/ [^ 0-9] /", "", $ id); }
You can then $ id formatted $ item in your SQL query instead of
No comments:
Post a Comment