rmoff

September 22, 2010

Better safe than sorry…sanitising DB input

Filed under: metalink, silly, support — rmoff @ 13:41

As Twitter learnt yesterday, you should always sanitise user input. I was amused to see My Oracle Support doing so….recursively 🙂

The apostrophe in “doesn’t” got escaped once, and then again, and then again, and then again, and then again ……

Advertisements

Create a free website or blog at WordPress.com.

%d bloggers like this: