Joomla query - do we need to manually escape? - Joomla! Forum - community, help and support
i using jfactory::getdbo() establish database connection. need manually escape queries user input? or joomla framework make queries safe when using jfactory::getdbo() ?
my queries like
is safe or need escape $categorie manually?
my queries like
code: select all
$query = "select #__categories.id
#__categories
right join #__wlseoartikel_categorie
on #__categories.id = #__wlseoartikel_categorie.cat_id
#__categories.id='".$categorie."'";
$db->setquery($query);
$db->query();
is safe or need escape $categorie manually?
Comments
Post a Comment