News:

Wondering if this will always be free?  See why free is better.

Main Menu

Simple db_query question

Started by MaisterK, February 20, 2018, 12:14:12 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions

MaisterK

February 20, 2018, 12:14:12 AM
Hi
I have simple security question:
strings used in $smcFunc['db_query'] need to be escaped?
or the function do this?

vbgamer45

#1
February 20, 2018, 01:10:41 AM
They should be if you are passing the data raw in.
If you are using the parameters type mapping then you are in better shape.
Community Suite for SMF - Take your forum to the next level built for SMF, Gallery,Store,Classifieds,Downloads,more!

SMFHacks.com -  Paid Modifications for SMF

Mods:
EzPortal - Portal System for SMF
SMF Gallery Pro
SMF Store SMF Classifieds Ad Seller Pro
Print
Go Up Pages1
User actions
Advertisement: