It is not recommended to type SQL-queries directly from a field and use that to access the DB. Reason is that you can make mistakes and mes sup everything, or worse, you are vulnerable to SQL-injections.
The better way is to make your own modules, with fixed SQL, and optional some input, like the example of Borni DHIFI. Than install that module and use a button or dropdown to let users execute the query and/or fill in the needed variables.
Please try to give a substantial answer. If you wanted to comment on the question or answer, just use the commenting tool. Please remember that you can always revise your answers - no need to answer the same question twice. Also, please don't forget to vote - it really helps to select the best questions and answers!
About This Community
|Asked: 5/21/13, 8:14 AM|
|Seen: 3154 times|
|Last updated: 3/16/15, 8:10 AM|