I have a snippet of mysql which is filled in with two variables:
SELECT `download` FROM `images` WHERE `owner_un`='$owner' AND `url`='$url'
The $url variable comes directly from a URL variable. This input should only ever contain alphanumeric characters, if this helps.
Thanks for any help
Be safe in handaling users,
Good points. A developer magazine told me "Assume all users are hacking your site", good advice!
We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.