Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
H
H
hello world2015-11-06 14:51:56
PHP
hello world, 2015-11-06 14:51:56

How to display comments and is such code dangerous?

How to display comments for a hotel if there are 2 tables?
Table a:
id |name|descr|adress
Table b:
id|id_hotel|user_name Comments are
required. Each hotel has its own comments. I got confused in the SQL query because I have not yet done it with a check for GET['id']. I forgot to say that in the request I want to immediately display the hotel data on the page + comments to it.

$id = $_GET['id'];
  $stmt = $pdo->prepare('SELECT comments.id_hotel, hotel.* FROM comments, hotel ');
  $stmt->execute(array(':id' => $id));
  $comments = $stmt->fetchAll();
  return $comments;

And tell me, is such a request vulnerable?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
S
sabanovvv2014-04-27 17:27:52
How to create a traffic situation constructor? 4Reply
M
MrLumusss2022-01-12 20:01:57
Is it possible to enable XMP if some dice don't support it? 4Reply
D
dNertyco2021-07-07 14:46:28
How to change array indexing? 0Reply
V
Vladimir Mazepa2015-11-03 17:28:39
How to pass an additional field - the price of the product? 1Reply
M
Memorivardo2015-11-03 17:38:57
How to write a rule in htaccess so that all paths lead to index? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question