> Hi.
>
> In sort of response to #46011, should ALL functions which can alter a
> database have the link to
> http://php.net/manual/en/security.database.sql-injection.php as part
> of a Warning rather than just a note and have the warning much higher
> up the page? Or at least before the examples.
A <warning> sounds nice, but I think it should be where we always keep
them (the notes section).
A seealso to the escape function should obviously be linked too.
-Hannes
No comments:
Post a Comment