English 中文(简体)
Wordpress Database Output - Remove SQL Injection Escapes
原标题:

I m having a problem using $wbdb. When I insert or update data using $wpdb->insert or $wpdb->update, the SQL injection protection actually inserts the into the database, and when outputting that information it has the SQL escape with it. (ie: My Value s Escaped).

I know there s gotta be a way to escape this using a wordpress function, but I haven t been able to find it searching google and the wordpress codex. ...So what s that function, or what am I doing wrong (seems like the shouldn t really get to the database in the first place) Thanks!

最佳回答

It looks as if magic_quotes are enabled on the server you are using.

There are a number of SO questions and answers that deal with what they are, why they re bad, and how to get rid of them, so I won t explicitly explain here, but suggest you look at a few of the following:

时间:2009-11-16 05:51:43
问题回答

暂无回答


上一篇:
下一篇:


相关问题
SQL SubQuery getting particular column

I noticed that there were some threads with similar questions, and I did look through them but did not really get a convincing answer. Here s my question: The subquery below returns a Table with 3 ...

时间:2009-11-13 05:35:38 回答:3 展示:1
难以执行 REGEXP_SUBSTR

I m 查询Oracle 10g。 我有两张表格(样本数据见下文)。 i m 试图提取一些领域

时间:2009-11-13 04:45:17 回答:1 展示:1
SQL Query Shortcuts

What are some cool SQL shorthands that you know of? For example, something I learned today is you can specify to group by an index: SELECT col1, col2 FROM table GROUP BY 2 This will group by col2

时间:2009-11-13 04:22:07 回答:3 展示:1
PHP array callback functions for cleaning output

I have an array of output from a database. I am wondering what the cleanest way to filter the values is example array Array ( [0] => Array ( [title] => title 1 ...

时间:2009-11-09 15:35:56 回答:5 展示:1
OracleParameter and DBNull.Value

we have a table in an Oracle Database which contains a column with the type Char(3 Byte). Now we use a parameterized sql to select some rows with a DBNull.Value and it doesn t work: OracleCommand ...

时间:2009-11-09 14:37:41 回答:5 展示:1
Running numbers in SQL

I have a SQL-statement like this: SELECT name FROM users WHERE deleted = 0; How can i create a result set with a running number in the first row? So the result would look like this: 1 Name_1 2 ...

时间:2009-11-09 14:33:30 回答:3 展示:1
How to get SQL queries for each user where env is production

I’m developing an application dedicated to generate statistical reports, I would like that user after saving their stat report they save sql queries too. To do that I wrote the following module: ...

时间:2009-11-09 14:20:51 回答:1 展示:1
热门标签

友情链接

Allggapp Alljchome-教程家园 mvfinale.com-影视剧情大结局大全