MyBB Community Forums

MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.6 > 1.6 Suggestions and Feedback > Included Suggestions / Feedback > MySQL, real escape
Full Version: MySQL, real escape
You're currently viewing a stripped down version of our content. View the full version with proper formatting.

Martin M.

2006-05-19, 10:58 AM
Isn't it better to make the class do an mysql_real_escape_string around each of the select, update and insert queries?
Instead of adding addslashes to each of the queries.
That would eliminate any future "typos" aswell.

Chris Boulton

2006-05-19, 01:37 PM
MyBB 1.2 already uses mysql_real_escape_string rapped in $db->escape_string.

Chris

Peter

2006-05-19, 03:06 PM
That is, "wrapped".
MyBB Community Forums > Community Archive > Archived Forums > Archived Development and Support > MyBB 1.6 > 1.6 Suggestions and Feedback > Included Suggestions / Feedback > MySQL, real escape