-
-
Notifications
You must be signed in to change notification settings - Fork 20
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Use Prepared statements instead of concatenating user-supplied values #25
Comments
Glad it was helpful! The third piece about SQL injections is the key motivation for me. There are definitely performance benefits that are possible though when the prepared statement can be reused with multiple sets of inputs. |
@ebertucc added a few more related docs:
I'm elevating this Fix coming! |
I'm adding a bounty to resolve this issue, since I'm busy building new features: $255.55 will be paid to you if your resolution to this issue is merged. To participate:
|
I'm happy to say this issue is closed! And Instant Message Freedom Inc. is receiving $255.55. Way to go @jrchamp! |
o since, Paypal tells me to increase the impact by sharing the link, I probably should share the donate link: https://paypal.com/donate/?hosted_button_id=ZDJ3L88KQQ5LS&source=url |
According to w3..
Thanks @jrchamp!
The text was updated successfully, but these errors were encountered: