[development] programming question (drupal specific)
Greg Knaddison - GVS
Greg at GrowingVentureSolutions.com
Wed Sep 13 18:44:24 UTC 2006
On 9/13/06, Tadej Baša <tadej.basa at gmail.com> wrote:
> You should use " (double quotes) if you want the *value* of $period to be inserted ...
And you should only use that technique if you are certain of the
source of the data (e.g. it's not from user input). Otherwise you
invite a SQL Injection attack.
More details: http://drupal.org/node/62304
Greg Knaddison | Growing Venture Solutions
Denver, CO | http://growingventuresolutions.com
Technology Solutions for Communities, Individuals, and Small Businesses
More information about the development