Re: Form not parsing correctly

in reply to Form not parsing correctly

I suspect that either your quoting is going awry, or your date formats are going wrong (In spite of your checking them). Try doing it with placeholders and see if that helps.

$statement = "DELETE FROM Out_Of_Office
    WHERE id = ? and start_date = ? and end_date = ?";
[download]

That will also cure the SQL injection attack your code allows.

After Compline,
Zaxo

Comment on Re: Form not parsing correctly Download Code

Replies are listed 'Best First'.
Re^2: Form not parsing correctly by intranetman (Acolyte) on Apr 27, 2005 at 16:21 UTC
Zaxo, I've never actually thought of using the placeholder technique. I've read up on some interesting use, thanks for the info very helpful. Also, I use mod_security and check/strip the input of any bad characters with a regex. If a user where to enter a SQL query of some sort, mod_security logs the attempt and throws an error. I think maybe the placeholder would add another layer of security...?	[reply]

Replies are listed 'Best First'.

Re^2: Form not parsing correctly
by intranetman (Acolyte) on Apr 27, 2005 at 16:21 UTC

[reply]

In Section Seekers of Perl Wisdom