Hi,I pass ';?>? this string (maybe coule be more optimized to break it) to a query
then use $t->getAdapter()->fetchCol($sql); and I get...string(67) "SQLSTATE[HY093]: Invalid parameter number: no parameters were bound"
I use $t->getAdapter()->quote + addcslashes($first_name,'%'); as it's a LIKE statement.
addcslashes on ? of course didn't help either. Testing this on sites made with ZF proves to break them all.
