[support] Place holders in SQL query
Greg Knaddison
greg at growingventuresolutions.com
Mon Apr 11 16:33:57 UTC 2011
On Mon, Apr 11, 2011 at 10:21 AM, Warren Vail <warren at vailtech.net> wrote:
>
> Your article seems to suggest that the whole concept of db_placeholders is
> not valid. How would you do any query where parameters come from a form
> without this vulnerability?
Please re-read the article and the comment on the article.
Thanks,
Greg
--
Greg Knaddison | 720-310-5623 | http://growingventuresolutions.com
http://masteringdrupal.com - Videos and Tutorials
More information about the support
mailing list