what's the best way to clean my data for searching a database?

lli2k5

New to the CF scene

Join Date: Aug 2006

Posts: 84
- Share
- Tweet
#1

what's the best way to clean my data for searching a database?

Sep 27, 2006, 11:20 PM

I will plan to explode a string and add pluses to the front.

Then, put it into a query WHERE title MATCH(mysql_real_escape_string($string));

Would this be enough to prevent SQL injection?
Tags: None
kehers

New to the CF scene

Join Date: Mar 2006

Posts: 193
- Share
- Tweet
#2

Sep 28, 2006, 04:59 AM

Guess it should...u may also consider doing mysql_real_escape_string($string) before adding ur plus
Comment

Announcement