Display data securely which come from database

Display data securely which come from database

silentium
Full stack developer
Posts: 83
Threads: 3
Joined: Feb 2015
Reputation: 18

04-12-2015, 01:21 PM

You should still use htmlspecialchars() and similar functions. CodeIgniter do not format, escape or filter the database output for you.

What it does, when using the Query Builder Class, is escaping you queries that insert/update data in the database.

Messages In This Thread

Display data securely which come from database - by smallbug - 04-12-2015, 12:49 PM

RE: Display data securely which come from database - by silentium - 04-12-2015, 01:21 PM

RE: Display data securely which come from database - by smallbug - 04-12-2015, 02:10 PM