J JaGGa New Member Sep 16, 2012 #1 Am I doing this right? Will this help avoid sql injections?\[code\]$deleteid = htmlspecialchars(strip_tags(mysql_real_escape_string($_POST['listid'])));mysql_send("DELETE FROM stage where listid='$deleteid'");\[/code\]
Am I doing this right? Will this help avoid sql injections?\[code\]$deleteid = htmlspecialchars(strip_tags(mysql_real_escape_string($_POST['listid'])));mysql_send("DELETE FROM stage where listid='$deleteid'");\[/code\]