0

Hello,

I am currently using bound parameters in regards to user input on my form. I have read about escape strings also and thought of using both together.

Is this possible and, importantly, is it necessary considering I am already using bound parameters? I would like to use both.

Thank you in advance,
Matthew

2
Contributors
2
Replies
20
Views
2 Years
Discussion Span
Last Post by mattyd
1

Technically, it's possible. However, both do the same thing. So if you escape your string, the binding might escape the already escaped string again, leading to strange results (more quotes and backslashes than you bargain for).

0

pritaeas:

Thank you for your reply.

I just watched a YouTube video about this very question that I posted; They said that bound parameters were designed in fact to automatically sanitize input, so I imagine that using both bound parameters and escape strings would be redunadant.

Thanks again,
Matthew

This question has already been answered. Start a new discussion instead.
Have something to contribute to this discussion? Please be thoughtful, detailed and courteous, and be sure to adhere to our posting rules.