[eluser]rvillalon[/eluser]
Sorry everyone, I just answered my own question. I'm actually using Active Record, and from the manual, it say:
"Beyond simplicity, .. it also allows for safer queries, since the values are escaped automatically by the system."