On 26/11/2008, at 2:51 PM, Gold wrote: > ...or does bindParam() sanitize the input?
Yes - parameters bound to prepared statements are automatically escaped. (before this thread spirals out of control) Kind regards, James McGlinn __________________________________ CTO Eventfinder Limited Suite 106, Heards Building 2 Ruskin Street, Parnell, Auckland 1052 Phone: +649 365 2342 Mobile: +6421 633 234 [EMAIL PROTECTED] | www.eventfinder.co.nz --~--~---------~--~----~------------~-------~--~----~ NZ PHP Users Group: http://groups.google.com/group/nzphpug To post, send email to [email protected] To unsubscribe, send email to [EMAIL PROTECTED] -~----------~----~----~----~------~----~------~--~---
