Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations sizbut on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Pear DB with prepare & execute result set?

Status
Not open for further replies.
xpblueScreenOfDeath

xpblueScreenOfDeath

Programmer
Sep 1, 2004
87
Is there a way to get the entire result set from a prepare and execute method into an associate array like the getAll method? getAll doesn't protected the user from sql injection attacks.
 
Sort by date Sort by votes
getAll doesn't protected the user from sql injection attacks
Click to expand...

can you explain? why don't you just validate the sql before using it? i use getAll a lot for various non-static functions in my apps. have not found a problem with it so far but I never allow external sql to get in (stopped programmatically).
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

cmayo
  • Locked
  • Question
Is PHP/PEAR MDB2 dead? Which PHP abstraction layer should I use?
Replies
1
Views
143
spamjim
spamjim
Wand850
  • Locked
  • Question
Parsing XML with multiple namespaces using PHP
Replies
3
Views
251
spamjim
spamjim
Gerrit Broekhuis
  • Locked
  • Question
PHP form with captcha and file upload
Replies
4
Views
235
Gerrit Broekhuis
Gerrit Broekhuis
waubain
  • Locked
  • Question
Convert Indexed Multidimensional Array to Multidimensional Array with Key Value pair 3
Replies
2
Views
205
waubain
waubain
PeDa
  • Locked
  • Question
Include URL with parameter in table generated by php
Replies
3
Views
423
PeDa
PeDa

Part and Inventory Search

Sponsor

Back
Top