I've been reading a lot about database security and using htmlspecialcharacters() and mysql_real_escape_string.
Is this necessary to use these functions with codeigniter or does it handle this automatically? eg
$this->db->select('*', FALSE);
$this->db->where('published', 'yes');
$query = $this->db->get('my_table');
$results = $query->result_array()
只要使用活动记录,就不必担心转义文本。
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.