Insertion with a quote
Status: Inactive
Brought to you by:
agoracart
Menu
▾
▴
#34 Insertion with a quote
If u add a simple quote in the name of a category it
will crash. It crashes because the query is surrounded
with simple quotes. I didn't try if this bug appears in
all the insertions field, but it should be interesting
to do so...
The way to fix it is obvious and easy : regexp.
Logged In: YES
user_id=1387901
INSERT INTO `anyInventory_categories`
(`id`,`name`,`parent`,`auto_inc_field`) VALUES ('10',
'pc's', '0', '0')