ChaosKnight Posted May 28, 2010 Share Posted May 28, 2010 Hi, I just wanted to know if anyone knows if PHP also supports "safe" SQL queries, I used it in my Ruby on Rails days, I have heard of PHP developers that also used it before... I don't know what they call it, but in Rails it works like this: :conditions=> [ "name LIKE ?", "%#{params[:query]}%" ] Notice the "?" in the query, and at the end the parameter is send containing the content of the query variable... Link to comment https://forums.phpfreaks.com/topic/203215-safe-sql-queries/ Share on other sites More sharing options...
Maq Posted May 28, 2010 Share Posted May 28, 2010 Yes, they are called prepared statements. Link to comment https://forums.phpfreaks.com/topic/203215-safe-sql-queries/#findComment-1064736 Share on other sites More sharing options...
ChaosKnight Posted May 28, 2010 Author Share Posted May 28, 2010 Thanks mate! Link to comment https://forums.phpfreaks.com/topic/203215-safe-sql-queries/#findComment-1064745 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.