J john020 New Member Sep 17, 2012 #1 Is this good enough to avoid a SQL injection?\[code\]mysql_real_escape_string(htmlentities (urlencode($_POST['postmessage'])));\[/code\]
Is this good enough to avoid a SQL injection?\[code\]mysql_real_escape_string(htmlentities (urlencode($_POST['postmessage'])));\[/code\]