code.php?user=p1&x=10&y=1

    $id1 = $HTTP_GET_VARS["id1"];
    $x = $HTTP_GET_VARS["x"];
    $y = $HTTP_GET_VARS["y"];
    $qry = mysql_query("UPDATE ".$dbTable." SET x=".$x.", y=".$y." WHERE id=".id1."");

>returns "Parse error: syntax error, unexpected T_STRING in \...\code.php on line 26"

What's wrong?

SQL-injection.

>>1
i) line 26, there's only 4 lines posted.
ii)
| $id1 = $HTTP_GET_VARS["id1"];
| ["id1"]
| id1
there's no id1 on your url, so I guess INFINITE_NIGGERS?

lol, there's unexcepted T_STRING on line 26.

data:image/jpeg;base64,/9j/4AAQSkZJRgABAQAAAQABAAD/2wBDAA0JCgsKCA0LCgsODg0PEyAVExISEyccHhcgLikxMC4pLSwzOko+MzZGNywtQFdBRkxOUlNSMj5aYVpQYEpRUk//2wBDAQ4ODhMREyYVFSZPNS01T09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT09PT0//wAARCAD7AL0DASIAAhEBAxEB/8QAGwAAAQUBAQAAAAAAAAAAAAAABAABAgMFBgf/xAA4EAACAQMDAgUBBgUEAgMAAAABAgADBBEFEiExQQYTIlFhcRQjMkKBkTNSobHRFVNi4TTBBxbw/8QAGQEAAwEBAQAAAAAAAAAAAAAAAAECAwQF/8QAIREBAQEBAAMAAgMBAQAAAAAAAAECEQMSITFBEyJRBGH/2gAMAwEAAhEDEQA/AOfjRRTEjGKIxRgo2YoxMAYmRJjmQJjBExooxgZ40UUYPFFHgRsxwYxkSY4FgaTUygGWKYzXg8SQErUywGALEYrJx8QJWBJDpFjEeBqwY0bMWZkDxo2YoyIxsxRiYAxMgY5MiYwWYo0UAeKNFGZ8xwRIGRyYEuMgZEPjrHBBjgISYMrk1jC1TLVMpEmDALxJCVKZYp+YGcj2jSUbEYCZizK8x8zIJ5izK8xZgSeYxMjujZjByZExiY2YA8UbMor3K0fk+0YXPUVBljiCVb9QcIMwGrVeq25jIYjkMQ17VbviOL2rx0g+2Ptj4BqXwJ9S4hNOrTqY2sMntMjbiOpIOQcQ4TcwZJZn216QQtXke80QAy5U5gExJCQEnGDiTVpCOI+BepzJSgHEmGhwM8NH3SkNH3TPhrcxZlW6PuhwLMxsyG6LdAkiZHMYmRLYgELmv5ScdT0mY7M7lmPJlldzUqHnIltC2eoQFU8xnIHVSZcluzdBNahpgUA1BzCRaqOAOJF8kjbPhtYZoyQtySABNoWNPOSMyYtwvRYv5IqeCsY2TEDiQaycDpNw08RtvxCeQ74IwGpMvVYRZXBpuEc+kzUe3WopGBMu7tTSbImmddY78dy0yueREPmU2FfzKIU/iWFHEuM0Y8QEliVwiAkhIFgOkbJ+kOBmZizIlayDL02UfMWZmpPMbMjmLMAlui3SGY2YiWbpXVfahOYsyqufRiM0bK3NxXAnT2totMDC4mToKjzzn2nRquR9Zj5L+nT4My/TGkuJA0PaFBOOkZkcGYOwGaTLGNNiOsO2kj3i2DHIjHGdskGU+0NZD2GJEU/eVE8BquOolN/R8y3YgciaJVM9RItTFVGQdSJrj8sfJOxzlplblR2Y4M6yjpdpQpedqNyKSdQO5nNiiUqcfiVszqdO8I6nqlRa9TKUmGRVrnP7LOuZn7cFAV6mlM2LSlclB1qOwUH6DrI3FmVpLXpb2oPwrFSORPQ9K8IaZYYqVUN1WH56vIH0E0dX09NQ0yra7QDjNPjoR0h7Z7wuV5AUxIHcemAIZc0TSqMjDBU4IMGPBlXPKOsjJPXmKKKc6zRpKRgRRsx+IxUGANmV1OcCTKe0g4x1gB+kHbdADvOoVkTlyBOS0+otO4Dt0UZhda4ubltyq+0dMAzPee10ePfrHULd0AvyI/2qgwHIyZx5W+YHFOrj6GWUKV0zDIbr3k/xxpPNf8dfTZG6SZC45mPaitTpAnJIhT1au0gDp0mdnG+d9h7utToHk9egmNdasOVRZfdK9ZhvOMDrM5regG9bZ5mmcz9sfJvX6VtqNRj7S22vayuGB4hNCnYAYKA/WaVtaWz/AMNE/QTWWMfXV/bPQrVvEqYwGYZE9qolWooUxtKgjHtPLb2w8ux+0U1A2MMge09L0qolXS7V0OVNJef0murLmMbLNfRUUUUzJ5944sVttSWugwtwu4j/AJDrOUPWepeK9O/1DRqmxc1qP3ie5x1H7Ty1us3l7lF/LFDA948qj5MwWskZEExtxgE40bdHBzAFzI1RlZYBGdSVPEDGaNZm7uWXHAAnWUbS3taPrA4mN4YpnDv0y2JpavbXNyy06T7F7mY7t7x0+PPM9C32qUaLFaYG4dhziZy31Sq7MFYAdTthlTR3amqk0l2DGfeVfYFpZVXLE9R0hzJz2o7TLlarBXIcQu9K/k4g1jabCMACF3KAIJFdGM/6ybzJpcDr1mSyO5YFevAwZ0K0RWpssBq2TU3PYy8/J1G8dvGWLCtkZp8TQoW95Qqb6J2qOQrH+0sVqicS+nUY4z1le7OeHjorDN1ZvTqgetcGbHh7XLG3063sK9Rlr0so42nAwT3mLoLNUqGmenWZ2oKbbXrlAcK4DzbM/qz3jupHqQIIyOhigmk1fP0u2qZ60x/iFyWF+GPInlHiWxXT9br0af8ADJ3p8A84/SesTgfENpSutRcs5ZlZhn4z0m3hnes96480xFJeVX/2v6x/Kr/7J/cTFaAHMWJMJVB5ov8AtmRPHVWH1EAjiOvWLK/zCSA54gFiibdlQpfYlBRWLKSczFWben1M0KOPcoZG+8b/APPJdfV/hwCnbMf+Zms7EgkiZukoKZrU85C1Tz8HmbQVSsz19dPjnxnOXfjpHpW67gW5hdSng5/pK+nMit5ItVNqZUQW63sOBxLkapXcJTBKjqYalujIVI5j/Rd+srThmqVbvJagi7woIyISKa21xvJ4xBb1adbdcU32uozt7Ga5suOI1810CafPSSRMnpJowqKDiX0UBMyi2ppDigvC5J7wXX6DG9p1h1NM5+ef+4TZrh+ORC6lAXWqWVM8knGPjIz/AGnRNXnHPqTvs6jR7drXSbag/wCJaYz9TzDYoo3Fb0Bq959js2Kn7x+F/wAzi6jksST1mjrl79qvG2n0J6VkNL0w31OpULbVUgA+/wD+4nd45PHjtcm7d65HF3Hg2tbVAj3lM56FQTG/+qOoBN7jPspm9dVfKKsD6H4246cHH9pAUq1UUw1dgGQFiTjpPPlvHdMwBR8KgVEA1R3LflQcg+3WdbpXh7R6lAUqtN6zEkB2znjrz0mRb2tdG3J6fMHIz2HedTo19QNotCp6CnABByw95j5dazOyn6zjNv8AwBp9dCbWoUbsKgDCee6xoj6Vetb3FPy3HI5yGHuDPb6RzTGeD7Tlf/kWwp19GS6IG+i23Pwf+5tjXcys+PJHV0ztJhmi3jLerSflX7fPaC7zvKt2lT5o11dDgghgZVnYedet67Wyt2oVKjbwyucjE1aZ4HzMvTr63u7ZGFRUqY9SHrmHisETnk5wAO5nPqWO/O5RW0NA7n05hFNmUeo8nmZWp6hTpMVBy3tJ5av2k/Iavqr2FvUp08hychgJmWXiKtRrl61Wo4PYwW9uDcNsHJY+0HXTLljnyzj3m2cyT65t7t1/Vq6vr73VPZR9OepmXa3dVWK7yFPBli6VXxlyBmI6ZWpnIw30lSZk4m/yd7W5aVwFAJBmpa4c8TkKVWtRYqc/rNnSNTVawWvkZ7yPT71rPNLOV01FGUcMVPvI09dpWOr2i1MeaagpuMfhUnk/1lNfUrWlTBFUMxPCryT+k5LV6ztqrO42uMHbn8PE0xPv1n5d/Pj3SZWu6oljTSiD97WyB/xHvC9MuPtWl2tx/u0lb9xOF165e88RlRnh/LXPbHE18cne39OTnfhVDljNPSda/wBPoNRel5gLbhg4xM3ynIyRj9Y3lH+Zf3ndqTU5XHm3N+BqDipp/mvUpoQ+7kDLYMpTUA9yyAFRuzkLnImrpGhXFWu1KqoCE4aqDuA+BCq3hs0dQSjSpMyE7g5IG7/E838PR9meBcXrfdgg5OB3A9ptWen7K1MVqtRnpgbggyRN+0sKNvSUCmobGDCgqg5CgfpM9Yuk+1RQehTg5x3mL4ut6lz4cu1AB2KH/Y5/tNWte29BitWqFI7YMG1G8tv9NuPPcJSemy7m6ciXMcievB7kbaxjVfVTU+xkrw5qZEjTO7CnuRLJfTc0aiOvVCD+06k3a0npXNTJosvDDnbmci55m/4evBVom2qEZTpnuJG52NfHrl40q+tW4oE0X3uR0nNv51zWLOTkzr1t6LHmih5/lEsqWdugG1Fz8CYyyN73Tlbe3KOGSiaje56CGlLtl9T4J7bZuLSpqmMCB3larb8omV+kJvtbZkzGU1C4Y4Z24kfsVUNkOyt75kX1K6qPhFwe4hFqK7tvrNKtsHvNfIQtKuPvCtTjHI5ltvpdB6gLDcO4JhIYCWUTiopUwlrPWYMp2VnaUy9OiibRkt3/AHnCXlwbi9q1j+dyR9J1niG9+z6SyqcPV9A/9/0nF5JxNcf65/JfvHtHhG7z4Lt6zA/dUm/XBP8AiceWFXVfMHyZq6HXpW3galT+1IKzU3daXc5J/wDUwbW5Rr1224UL/wC5r49TvGd7MWxrFzGLShrhMjYc/Mras+fT0nZ7xxetDad491O2VKYp0GRexU8jP/c038f31VxsWlTHcbc4/eedK+OkmKpz1nB12PT7PxywwtVBUGPxHgwTVPGl3U/8Sr5Q+AMzgUrnPBxIvWJPWLg617zxDqdxUZql9WJPs+P7TMub+7uBtr3NaoPZqhIgxqSHJjIzHMZG2uD8xyAO8gcQAhjmK3uHtbhK1M8qf3g+89JdRt69x/CpM3yBxA3d2dwK1FKo6MAYWz5GZh6Z5tC2ppUGGUYImmKgZeJzan115vxbv4JlD1NykEZEkGOz5+ZUG3nBMUi5oObSiKnmKn6SFU8ZXgjtCHyrY6iVVV6HjmMfhClUIYFhD6YU4ZeM9pnnk7TC6VRaVA1KmdqDJxKibWD4iq1bm+FKmjslIY4B695mU7S4dwvk1Bk4yVOBPSLd6Vegleiwei/R17H2I7GGJasyFkbOPidMn6cuvt65Wz0+r9st8VKLU6ZUMoYj0jr1hR09qOTTt/X3YnrN31o4V1ZfkiE0wSMiqDjrxKzmRFlcr5NUD1U8RzRq4B8tsH4nX0lV22vhsdfTLGtrUn+F+xls/SvD8xBuZHMbvMGq5WjFpAGOo3N8d4EsUcbj+giY5iJzImAIyOOY86/w14fUUU1G9XLH1UqZ/uY5OgHo/h0Mi3F+p55SkeP1P+J0llZrUZglMeVRUsQo646CWVH3Vdp5ZuT9Jp6Y6oxplQMjn5hLOnz45Gzdqi7mOS3JhOShyP2jPbm0v61sRgI5x9O39JOouRx1nNr8u3M7lbRIqrhTz/URzSCHGTn3go3I+RxCFrbl9Y59xF0rnhFfT7nMHqhhwoz7QgtnocyFRlHIXmPoUU6eSD0hDIGosh/MCJXTcs/TAEvELVZz9Y+j6g+k35V8tbOdtVPj3HzPQKTLTK7W30agyje4nn2p2+GNRR06zpfB16bvT6mn1WzUoeqnn29prjXWPkzx0lamtSlggErzn3EzLqp5BJTo00bepkFG/Esx79t1XHsZp1k2tNXdamo3tJU8sWwMy3TF3aeR7iQpt5akY7zSVNeDmN3jxAEsAJkRxLaYwpPvNOx8OahdotUoKNJujVOP6Tq9L8OWNpseqvn1B3ccftKmbStcZaadd3fNGixX+Y8AfrNKn4cfjza25j+WmMzu6tjSrqAgCdhtjW1gtmC2d7e5HSV68LrC0rwvaW7rXu0LMOVRjn95vurOp2847SVTk5X6xlDNxiK/+KkZLIwvWJGNwmrbcqGA5XrBL1Gpujc4zC6B2YcdD1mdilWu6e1VU1CiCSg21APb3mWoDKDOvsnH4TyD/WZ2qaCyFrnTlyp5aiP7r/iR5Md+xr4vJM/1rn2pdeMyvYV6QxCHO0jBHUHggxOkwdPOhQOOkg5GOeJewx8StxxGOKUfHTky9T3MqwMye4doVUVXCB1YHoYDol0bDXaLAkKzbG+hhtw22mfmZFCm1fUKVNB6nqAD95WGfk/D0u4RqVVaq9G6zOuKe68K9jzOguaI+yop68QFrfdc59gJ0yOTrT0ynstFX4g1QBXIPvNCiNtED2mfcn74y8oryTSPCmo6nRFwE8qgejsOo+BOo0/w9Z6YA3kGrW/ncZx9B2nY2ZWjSSmqgIowB7CB6ipWsR2PMfrMol7QVGk9UEFfQeDntCHtlpUi3UrxK7cMOhh4HmUsd+8cp8C27+lB3DGW1NrZU95UqbHA9pY/WT0+KAuGxL0phRmTRM4MmwkqZ2o080N3sQZGzw9Pae0NuqW63Ye4gdsPLqSaYui/lMFY4XsfabFCoQAG/f3ma9IOmR3EVrctROyplqf9RKiaM1HR7TUBvINOt2qJwf195zd9pGpWQJNP7RSH56Yyf1E6+hUVlyjBhCFYGRrEqseTWfw8xaruyO/tKXZh3npd5pdje/8AkW1Nm/mxg/uJjXPhGzfPk1qtP4PqEy/jron/AES/lxIb5MtpsAuTN6v4NuAT5N3TYf8AJSJSPCOo9PPoY+p/xFcVc8uf9c9cNvz7Ta8FaN9ovjqFVfuqJ9Ge7f8AUKp+DLlnHn3dNU77ASZ2FpbUbG0p29BdqU1wJeMc/LLy+WWciNwNzontzBQA1YnHfgy+4fYjOep6Sm15IJm+XPRy/wAOZ9x/FMPzgEQGvzUzHCqCjaYr+lvVHx2jZOfmGBRUtee0rSYw6Y2OQehhdEYfiV1aeHPxLKJw4zJlWhVT1E9IwXdL66YYHGY1NST0ipwyrhYjgDMsIx2kTiTTRZd1Jh8TM/PNhVyp4mYqEufiKnBtq2+ntMjVp7Ku7HBj0F24wYQ6+ZTPH0lRKmmGpnchIPxD7e83ELUAB94HTPYyTJ3EZWNkHI4MiSYHa1z+BjCHLKMgnEniTn6SMj5rd5Bqp+IzXd4zuFHMr3sRnMqJJ6wNTXLVWwekvoJtXntK1XnMu/CkoHJ+8+IM3LGXSs9THkqoP4viG2ZyrIfaAflB7wuxP3wipBq6YqmVKMOIXeD70wcgcGSpfUAamDGRcCKn/DMmv4YCINxKnPvLW6yqp0EmqW0+gxAiu2qwA7w2j0gtx/FP1gE6YMvXOeYPSP8AeEdxHBVbDZU4HBlinIkanSMhOBGRz6Hzgw6jUFRMHrAm6SVqTu6xpEuCDKz0hFQSlgMxHESeOOkYRHpFGDjgx6jYwIw6yNX8X6RlE8+mQMcfhMbEcLT/2Q==

use faggot quotes, I'm not even joking, that's how silly MySQL is

>>1
You forgot a dollar sign before id1

Also, which website is this? Would love to... take a look.

By the way why the fuck are you concatenating the strings, you know you can reference variables inside of a string in PHP?

^>>1
nothing _everything's ^fine

PHP and MySQL kinda turn me on. It makes me feel funny when I think of huge corporations using it and being all professional and serious. This society, in all its meaninglessness, is funny in its own twisted way.

It's beautiful. Ugly, yet somehow beautiful. All that time I was asleep. Now I just need to reconstruct the self, which is a hard thing to do from scratch because the way we build our identity is naturally decided by a majority rule, just like how we evolved.. but maybe there is no need for a self after all.

Oh, what am I rambling on about? I don't even make sense to myself. I'll just let someone else make sense of it. ^__^


$id1 = isset($_GET['id1']) ? $_GET['id1'] : '';
$x = isset($_GET['x']) ? $_GET['x'] : '';
$y = isset($_GET['y']) ? $_GET['y'] : '';

$id1 = mysql_real_escape_string($id1);
$x = mysql_real_escape_string($x);
$y = mysql_real_escape_string($y);

$res = mysql_query("UPDATE {$dbTable} SET x = '{$x}', y = '{$y}' WHERE id1 = '{$id1}'");

$id1 = isset($_GET['id1']) ? $_GET['id1'] : '';
$x = isset($_GET['x']) ? $_GET['x'] : '';
$y = isset($_GET['y']) ? $_GET['y'] : '';

$dbh = new PDO('mysql:host=localhost;dbname=shitdb', '>>1', 'faggot');
$s = $dbh->prepare("UPDATE ? SET x = ?, y = ? WHERE id1 = ?");
$s->execute(array($dbTable, $x, $y, $id1));

>>12
needs MOAR sql injection.

>>10
 It all makes perfect sense, it seems.
 There is a need for a self if you want to indulge in mental exercises when talking with others - as it is quite a fun concept to work with, but other than that - let it slide.

bampu pantsu