views:

28

answers:

1

Hi,

I have decided to take the plunge into the improved MySQL by using MySQLI .

Problem is i cannot find any in depth yet simply put tutorials online. The ones i have found are very short and or does not really explain anything. I know you have the php website but to tell you the truth it is really not a easy tutorial to follow, it's a manual and it's confusing for most of the time.

Does anyone know of any good tutorials for a MySQLI newbie? i know the normal MySQL but nothing about MySQLI. I also need tutorials on how you fetch data etc using using mysqli etc as i am not sure if it differs with MySQLi ?

Also can someone tell me why is it that people say you don't have to use mysql_real_escape_string() with MySQLI yet they have a MySQLI version as: mysqli_real_escape_string() , ? i am very confused about this and want to ensure i understand and get this rite.

Although i understand there are performance gains etc with MySQLI for me personally my main purpose to switching is to avoid SQL injections, as i have been reading sql injections are a thing of the past with MySQLI yet i am not sure if that's true specially when i found a mysqli_real_escape_string() for use with MySQLI .

Some video tutorials would be great to if anyone know of any on top of written tutorials, i find video tutorials more easier to understand when someone is speaking as they are typing and explaining things.

If someone could please help explain all of this to me that would be very helpful of you.

Thanks PHPLOVER

+2  A: 

Hi,I found these two articles very helpful:

Also, to learn about MySQL prepared statements in general:


About the function mysqli_real_escape_string(), I think they have it for when you are using Mysqli, but not the prepared statements. Because it's not mandatory to use them in order to use Mysqli, actually in some cases they are not advised.

I don't know about a video tutorial, but I hope this is helpful.

Greyes
Thank you Greyes, they look very good. Not sure exactly what you mean about the mysqli_real_escape_string() maybe someone could elaborate more on that. But thanks great links :)
PHPLOVER
I just meant that they keep mysqli_real_escape_string for when you don't want to use prepare statements.
Greyes
Thanks Greyes! All the best
PHPLOVER