Forums

WordPress › Support » How-To and Troubleshooting

wpdb->prepare... How do I use it??? (2 posts)

  1. lavishcreative
    Member
    Posted 4 years ago #

    I'm trying to prevent MySQL injection attacks on a plugin I have hacked. What is the correct way to use wpdb->prepare?? There is not enough documentation on it.

    I have a form with several (at least 20) values I need to insert into a database.
    Do I need to declare each value as '%d' or '%s', or is there a way to batch declare everything to avoid this?

    Please give me some clue... Thanks!

  2. MichaelH
    Member
    Posted 4 years ago #

    Best I can do for you is to point you to some examples:

    http://trac.wordpress.org/changeset/7645
    http://trac.wordpress.org/changeset/6241
    http://trac.wordpress.org/changeset/6180
    http://trac.wordpress.org/ticket/5145
    http://trac.wordpress.org/ticket/4553

Topic Closed

This topic has been closed to new replies.

About this Topic

Tags