Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums Archived Discussions Archived Development & Programming db->update_string() -> safer query using where clause as string?
db->update_string() -> safer query using where clause as string?
  • El Forum
    Guest
  •  
#1
10-29-2010, 04:02 PM

[eluser]Unknown[/eluser]
Hi,

the where clause in the last example will NOT produce a safer query (it gets only escaped using an array). Maybe you should warn unexperienced users if they are using a string?!

Url: http://ellislab.com/codeigniter/user-gui...lpers.html




Theme © iAndrew 2016 - Forum software by © MyBB