db->update_string() -> safer query using where clause as string? |
[eluser]Unknown[/eluser]
Hi, the where clause in the last example will NOT produce a safer query (it gets only escaped using an array). Maybe you should warn unexperienced users if they are using a string?! Url: http://ellislab.com/codeigniter/user-gui...lpers.html |
Welcome Guest, Not a member yet? Register Sign In |