Dandellion/Misc-small-projects
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Made it a bit less prone to SQL injections?

Browse Source
This commit is contained in:
Daniel Løvbrøtte Olsen 2016-05-15 16:01:04 +02:00
parent c007ce657d
commit bd3caacbdc
1 changed files with 2 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
blomzt/main.php
View File

@ -66,6 +66,8 @@ function TableExists($table, $conn) {
} }
function addToTable($lat, $lon, $url, $table, $conn) { function addToTable($lat, $lon, $url, $table, $conn) {
settype($lat, "double");
settype($lon, "double");
$sql = "INSERT INTO `" . $table . "` (`id`, `location`, `url`, `date_added`) VALUES (NULL, GeomFromText('POINT(" . $lon ." " . $lat . ")',4326), 'test', CURRENT_TIMESTAMP)"; $sql = "INSERT INTO `" . $table . "` (`id`, `location`, `url`, `date_added`) VALUES (NULL, GeomFromText('POINT(" . $lon ." " . $lat . ")',4326), 'test', CURRENT_TIMESTAMP)";
//$sql = mysqli_real_escape_string($conn, $sql); //$sql = mysqli_real_escape_string($conn, $sql);
printf($sql); printf($sql);