Ismael Farfán Estrada wrote: > by the way, does sending the data as a list prevent SQL injection? Yes. > I haven't worried for that yet. If you are accepting user input and putting it into the database, you should worry about it. See http://xkcd.com/327/ for a humorous take on this ;-) Kent