Quote Originally Posted by just_visiting View Post
by the way, sql injection don't end with ; ... you either user # or /*...
Didn't see this one up until now. A ; indicates the end of a query in MySQL. It doesn't really matter if what comes after it is syntactically correct or not, it'll still processes the first query (before the ; ). You'd use remarks to cull any syntax errors but since they don't matter anyway why bother?