[wp-trac] Re: [WordPress Trac] #4553: Consider using local
prepared-statement/sprintf()-like system for last-second SQL
escaping
WordPress Trac
wp-trac at lists.automattic.com
Fri Oct 12 08:14:50 GMT 2007
#4553: Consider using local prepared-statement/sprintf()-like system for last-
second SQL escaping
---------------------------------------------------------------------+------
Reporter: markjaquith | Owner: markjaquith
Type: task | Status: assigned
Priority: high | Milestone: 2.4
Component: Security | Version: 2.3
Severity: normal | Resolution:
Keywords: sql prepared statement sprintf injection security early |
---------------------------------------------------------------------+------
Comment (by robmil):
Replying to [comment:8 Otto42]:
> I have no idea what to name it. execute? dbgetf? ;)
+1 for "execute". It fits in with the general "prepare->execute"
nomenclature used by most other prepared statement implementations.
--
Ticket URL: <http://trac.wordpress.org/ticket/4553#comment:20>
WordPress Trac <http://trac.wordpress.org/>
WordPress blogging software
More information about the wp-trac
mailing list