[development] programming question (drupal specific)
Greg Knaddison - GVS
Greg at GrowingVentureSolutions.com
Wed Sep 13 18:44:24 UTC 2006
On 9/13/06, Tadej Baša <tadej.basa at gmail.com> wrote:
>
> You should use " (double quotes) if you want the *value* of $period to be inserted ...
>
And you should only use that technique if you are certain of the
source of the data (e.g. it's not from user input). Otherwise you
invite a SQL Injection attack.
More details: http://drupal.org/node/62304
Regards,
Greg
--
Greg Knaddison | Growing Venture Solutions
Denver, CO | http://growingventuresolutions.com
Technology Solutions for Communities, Individuals, and Small Businesses
More information about the development
mailing list