Doesn't active record sanitize input anymore?

Doesn't active record sanitize input anymore?

El Forum
Guest

12-14-2008, 07:54 AM

[eluser]FinalFrag[/eluser]
I now have the following code in my model

Code:
$name = "this should <b>get</b> ' escaped";

$this->db->set('userId', $userId);

$this->db->set('name', $name);

$this->db->insert('todoLists');

When I execute that, it just gets put in the database like that... unescaped.
So the problem seems to be located in the model :S

Messages In This Thread

Doesn't active record sanitize input anymore? - by El Forum - 12-13-2008, 05:52 PM

Doesn't active record sanitize input anymore? - by El Forum - 12-13-2008, 07:19 PM

Doesn't active record sanitize input anymore? - by El Forum - 12-13-2008, 07:40 PM

Doesn't active record sanitize input anymore? - by El Forum - 12-13-2008, 09:40 PM

Doesn't active record sanitize input anymore? - by El Forum - 12-14-2008, 07:54 AM

Doesn't active record sanitize input anymore? - by El Forum - 12-14-2008, 10:48 AM

Doesn't active record sanitize input anymore? - by El Forum - 12-14-2008, 12:24 PM

Doesn't active record sanitize input anymore? - by El Forum - 12-14-2008, 01:23 PM

Doesn't active record sanitize input anymore? - by El Forum - 12-14-2008, 01:27 PM

Doesn't active record sanitize input anymore? - by El Forum - 12-14-2008, 01:33 PM