Mike's questions

if($user['cat'] == 0){      
  // Проверяем наличие категории
  $mesto_cat = DB::$the->query("SELECT mesto FROM `sel_category` WHERE `mesto` = '".$message."' ");
  $mesto_cat = $mesto_cat->fetchAll();

  if (count($mesto_cat) != 0) 
    {
      $chat = escapeshellarg($chat);    
      $message = escapeshellarg($message);  
      exec('bash -c "exec nohup setsid php ./select_cat.php '.$chat.' '.$message.' > /dev/null 2>&1 &"');
      exit;
    }
}

如果 $message 是，请告诉我如何修复 sql 注入"qwe'; DROP TABLE sel_category; --"

您好，请帮我删除- /buyDIGITAL_

也就是说，这里的数字可以是一个随机数。在符号 _ 的末尾

// Проверяем наличие района
$proddist= preg_replace('#/buy#USi', '', $message); 
preg_match("/^([^_]*)_(.*)$/", $prodres);
$mestod = DB::$the->query("SELECT mesto FROM `sel_districts` WHERE `mesto` = '".$proddist."'  ");
$mestod = $mestod->fetchAll();

if (count($mestod) != 0) 
{   
$chat = escapeshellarg($chat);  
$message = escapeshellarg($message);    
exec('bash -c "exec nohup setsid php ./select.php '.$chat.' '.$proddist.' > /dev/null 2>&1 &"');
exit;
}

这就是我如何删除单词 /buy how to remove the WORD + Number + sign _ in this

谢谢

if($user['cat'] == 0){      
  // Проверяем наличие категории
  $mesto_cat = DB::$the->query("SELECT mesto FROM `sel_category` WHERE `mesto` = '".$message."' ");
  $mesto_cat = $mesto_cat->fetchAll();

  if (count($mesto_cat) != 0) 
    {
      $chat = escapeshellarg($chat);    
      $message = escapeshellarg($message);  
      exec('bash -c "exec nohup setsid php ./select_cat.php '.$chat.' '.$message.' > /dev/null 2>&1 &"');
      exit;
    }
}

告诉我如何让它/sity1检查是否有类别？现在，如果您自己按数字 1，它就可以工作了。我怎样才能让它与 一起工作/sity1？