Does MySQL have built-in escaping functionality?
Question
I am now using my 100th (ok, exaggerated) language&framework combination with MySQL. It seems almost silly, and also very risky, to me that every single one of these tools provides their own escaping functionality. Does MySQL (or other SQL solutions) not offer that themselves? What if there is a little bug in one such customized escape functions? Why should we have to trust third party providers to get it right?
1 answers
solution1
1 ACCPTED 2014-04-30 11:46:20
MySQL 具有连接器和API,包括mysql_real_escape_string功能,而编程语言正在对其进行调整。
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
Does MySQL have built-in injection attack protections against URL-based attacks?
Built-in MySQL help documentation
RANK with built-in condition MYSQL
Does mysql have path separators functionality?
Why does the MySQL built-in function 'current_user()' return a hostname containing a '%' symbol?
static build of Qt with built-in MySQL library
XAMPP has MySQL built-in, not MariaDB?
Map/use built-in MySQL function in Entity Framework
PL/SQL library to emulate mysql built-in functions
Issues using PHP MySQL Built-In Functions inside a class
Related Tags