Updating a filename's counter value failed each time

[Νίκος]

Στις 18/6/2013 2:30 πμ, ο/η Dennis Lee Bieber έγραψε:
> 	In the case of MySQLdb -- IT will wrap each argument with quotes, along
> with escaping any special characters.



Even if the query is something like:

http://superhost.gr/cgi-bin/files.py?filename="Select....."

 From what exactly the comma protects me for?

What id=f the user passes data to filename variable through url?
Will comma understand that?
How can it tell form a normal filename opposes to a select statement 
acting as a filename value?

-- 
What is now proved was at first only imagined!