Hacker News new | ask | show | jobs
by dgdg 5105 days ago
That's an example of how not to create a website.

$query = "INSERT INTO groceries (item_name, in_cart) VALUES ('".$_POST['item_name']."', 0)";

come on..
1 comments
jchavannes 5105 days ago
Was planning on adding string cleaning in the next lesson :)
link