On Wed, January 23, 2008 11:28 pm, Dotan Cohen wrote: > In > other words, mysql_real_escape_string itself is safe from SQL > injection?
Yes. That is the entire purpose of the existence of that function in the first place. -- Some people have a "gift" link here. Know what I want? I want you to buy a CD from some indie artist. http://cdbaby.com/from/lynch Yeah, I get a buck. So? -- PHP General Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
