Codeigniter MySQL security, htmlspecialcharacters & mysql_real_escape_string?
Question
I've been reading a lot about database security and using htmlspecialcharacters() and mysql_real_escape_string.
Is this necessary to use these functions with codeigniter or does it handle this automatically? eg
$this->db->select('*', FALSE);
$this->db->where('published', 'yes');
$query = $this->db->get('my_table');
$results = $query->result_array()
1 answers
solution1
1 ACCPTED 2014-04-05 03:34:29
只要使用活动记录,就不必担心转义文本。
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Codeigniter Deprecated: mysql_real_escape_string():
mysql_real_escape_string and ’
setup database for codeIgniter ErrorException [ 8192 ]: mysql_real_escape_string()
mysql_real_escape_string(): Access denied in codeigniter
mysql_real_escape_string : Is it enough for database security alone?
mysql_real_escape_string does not escape "
MySql mysql_real_escape_string errors
Warning: mysql_real_escape_string()?
Speed of using mysql_real_escape_string
Is mysql_real_escape_string() broken?
Related Tags