Hello,
I have a html form, that has input fields for username,password and servicename(Oracle 8 style)plus a textarea for a query string. These are then passed to a script that returns the data. I am using OCI8.dll.
This works fine for :
select * from $table_name
However if I try:
select * from $table_name where field = 'whatever'
I get an OCIStmtExecute: ORA-00911: invalid character error. Obviously, the quotes need to be escaped, but i'm not sure how.
Could anybody help in this matter.
Thank you in advance.
I have a html form, that has input fields for username,password and servicename(Oracle 8 style)plus a textarea for a query string. These are then passed to a script that returns the data. I am using OCI8.dll.
This works fine for :
select * from $table_name
However if I try:
select * from $table_name where field = 'whatever'
I get an OCIStmtExecute: ORA-00911: invalid character error. Obviously, the quotes need to be escaped, but i'm not sure how.
Could anybody help in this matter.
Thank you in advance.