Skip navigation.

Add new comment

@Ole Hansen: You call that clean? What if the Value of $_POST['bewertung'] doesn't meet any of the criterias? Where is the default Value for $punkt? This way you can too easily inject harmful SQL-Code if the server permits it. Now with the newer versions of MySQL doing nasty things is no problem as subselects are allowed.



  • Web and e-mail addresses are automatically converted into links.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd> <p> <br /> <br>