Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived General Discussion Active Record Vulnerability or Misunderstanding?
Active Record Vulnerability or Misunderstanding?
  • El Forum
    Unregistered
  •  
#4
12-07-2010, 12:59 PM

[eluser]WanWizard[/eluser]
There's a difference between SQL injection protection (which is about properly escaping values) and passing the wrong value.

In general, always validate your data before using it (unless you're absolutely sure it has the value you expect).


Messages In This Thread
Active Record Vulnerability or Misunderstanding? - by El Forum - 12-07-2010, 10:00 AM
Active Record Vulnerability or Misunderstanding? - by El Forum - 12-07-2010, 11:03 AM
Active Record Vulnerability or Misunderstanding? - by El Forum - 12-07-2010, 11:15 AM
Active Record Vulnerability or Misunderstanding? - by El Forum - 12-07-2010, 12:59 PM
Active Record Vulnerability or Misunderstanding? - by El Forum - 12-08-2010, 04:10 AM
Active Record Vulnerability or Misunderstanding? - by El Forum - 12-08-2010, 11:27 AM
Active Record Vulnerability or Misunderstanding? - by El Forum - 12-08-2010, 03:02 PM
Active Record Vulnerability or Misunderstanding? - by El Forum - 12-08-2010, 03:18 PM



Theme © iAndrew 2016 - Forum software by © MyBB