smolinari
commented
9 years ago It doesn't look like there are any bind methods, so it is up to you to filter input for anything malicious.
Scott
Open bankorh opened 9 years ago
smolinari
commented
9 years ago It doesn't look like there are any bind methods, so it is up to you to filter input for anything malicious.
Scott
electricjones
commented
9 years ago We are going to support binding in our project spider.It should be easy enough to only use the binder to sanitize your query before sending it through orient. It's not terribly high on my list atm, though.
As title, how can I prevent SQL injection for this driver? A newer php has removed function like
mysql_real_escape_string, so what else can I do to prevent this?