+- CodeIgniter Forums (https://forum.codeigniter.com)
+-- Forum: Archived Discussions (https://forum.codeigniter.com/forumdisplay.php?fid=20)
+--- Forum: Archived Development & Programming (https://forum.codeigniter.com/forumdisplay.php?fid=23)
+--- Thread: Active Record & SQL Injection? (/showthread.php?tid=29404)
Active Record & SQL Injection? - El Forum - 04-08-2010
[eluser]Mischievous[/eluser]
Does active record take care of any possible SQL injections?
100% yes or NO?
Active Record & SQL Injection? - El Forum - 04-08-2010
[eluser]evolutionxbox[/eluser]
I think 100% yes... check it out, try it yourself.
Or just check the user guide - ellislab.com/codeigniter/user-guide/.
Active Record & SQL Injection? - El Forum - 04-09-2010
[eluser]mddd[/eluser]
It does if you tell it to. There are configuration options for whether or not you want to have everything run through the filters.
Active Record & SQL Injection? - El Forum - 04-09-2010
[eluser]Mischievous[/eluser]
I've checked the userguide, its basically my bible... but only states "It also allows for safer queries, since the values are escaped automatically by the system." Which doesn't really tell me into how much depth of security it goes into?