Do I need to sanitize input if using prepared PHP/MySQL queries?
No you don't have to escape it or sanitize it for injection protection. For other app specific things you may sanitize it though.
Gary: You copied that fragment of code straight from the manual at php.net about mysqli::prepare. On that same page is the following text.
I cant really gove you an answer,but what I can give you is a way to a solution, that is you have to find the anglde that you relate to or peaks your interest. A good paper is one that people get drawn into because it reaches them ln some way.As for me WW11 to me, I think of the holocaust and the effect it had on the survivors, their families and those who stood by and did nothing until it was too late.
Related Questions
Function to sanitize input to Mysql database?
In a bash script, how do I sanitize user input?
Are dynamic mysql queries with sql escaping just as secure as prepared statements?
Mysql prepared statement parameters and ordering queries?
Sanitizing MySQL Queries without preprared statements (PHP + old mysql module)?
Does anybody see wrong with my update or insert queries? I am using prepared statement?