$this->db->escape()

$this->db->escape() - Fix.

El Forum
Guest

09-22-2008, 03:07 PM

[eluser]Colin Williams[/eluser]
Actually, perhaps it does make sense in this context. I was coming from the thought that you should only escape user supplied data. However, using a helper to "simplify the process" doesn't necessarily imply you are only working with user-supplied data. Hence, your second approach makes a lot more sense (however, it's not terribly robust, since it only ignores one of many SQL functions).

Messages In This Thread

$this->db->escape() - Fix. - by El Forum - 09-22-2008, 12:46 PM

$this->db->escape() - Fix. - by El Forum - 09-22-2008, 01:16 PM

$this->db->escape() - Fix. - by El Forum - 09-22-2008, 01:24 PM

$this->db->escape() - Fix. - by El Forum - 09-22-2008, 01:34 PM

$this->db->escape() - Fix. - by El Forum - 09-22-2008, 02:52 PM

$this->db->escape() - Fix. - by El Forum - 09-22-2008, 03:07 PM

$this->db->escape() - Fix. - by El Forum - 11-13-2008, 10:04 PM