Reputation: 2094
Put semicolon in sql
I would like to know if i can put a semicolon in a SQL table. Or would that mess things up like an injection attack. Basically what I'm trying to put in is my HTTP_USER_AGENT info and that includes a semicolon. Or Basically there a way i can turn that semicolon into the html symbol for it? Thank You So Much
Upvotes: 0
Views: 422
Answers (2)
Reputation: 9121
Yes, you can put a semicolon in a mySQL table. Even more: You can put anything into it as long as it is escaped properly.
However, I'd heavily recommend using prepared statements that will do the escaping for you. My first preference is PDO but you can also check out MySQLi.
Upvotes: 4
Reputation: 8312
Use mysql_real_escape_string, it will do all the escaping work for you, you just have to put ' before and after it.
mysql_real_escape_string($_SERVER['HTTP_USER_AGENT'])
Upvotes: -1
Related Questions
- how to include a semicolon in sql query VALUES?
- Codeigniter : semicolon breaking query
- How to execute mysql code with semicolon in php?
- MYSQL Weird syntax error with/without semicolons
- Outputting semicolon-delimited rows from php MySQL query
- separated semicolon in fields splid and each
- How can I solve syntax error on multistatement mysql query near semicolon
- Should a semicolon be included when building SQL query
- SQL - How to form a string by concatenating semicolons to a number?
- SQL: How To Append Semi-Colon To Column Value.