Hi
I have a small form where users can comment on some articles on the web
site.
But to prevent abuse I want the form to save the comments and email it to me
to review.
But that means that the user can still abuse the form itself or cause
Query/SQL problems, (with special character for example).
So how would I save ANY text to the database? And if I have to convert the
text how do I retrieve it correctly?
For example if the user enters "This is a quote, 'hello world'" how should I
handle special characters?
Would you advise me to handle all my text fields the same way to prevent
abuse/hacking?
And how should I protect my fields against hacking?
Many thanks
Sims
I have a small form where users can comment on some articles on the web
site.
But to prevent abuse I want the form to save the comments and email it to me
to review.
But that means that the user can still abuse the form itself or cause
Query/SQL problems, (with special character for example).
So how would I save ANY text to the database? And if I have to convert the
text how do I retrieve it correctly?
For example if the user enters "This is a quote, 'hello world'" how should I
handle special characters?
Would you advise me to handle all my text fields the same way to prevent
abuse/hacking?
And how should I protect my fields against hacking?
Many thanks
Sims
Comment