M
Max Harvey
Hi,
I have a simple script which takes input from CGI, and outputs it to a
database with WIN32::ODBC.
The problem is when I encounter input with a single quote in it, it
messes up the SQL statement for the Win32::ODBC module.
How can I clean/phrase the input ($comments), so that it can be used
as part of my SQL statement?
Any help would be great... the script basically does what it is
supposed to do, but it can be crashed by the user putting in the wrong
input, something which I know is bad, just aren't good enough with
Perl yet to fix
Max.
I have a simple script which takes input from CGI, and outputs it to a
database with WIN32::ODBC.
The problem is when I encounter input with a single quote in it, it
messes up the SQL statement for the Win32::ODBC module.
How can I clean/phrase the input ($comments), so that it can be used
as part of my SQL statement?
Any help would be great... the script basically does what it is
supposed to do, but it can be crashed by the user putting in the wrong
input, something which I know is bad, just aren't good enough with
Perl yet to fix
Max.