Hello,

I am currently using bound parameters in regards to user input on my form. I have read about escape strings also and thought of using both together.

Is this possible and, importantly, is it necessary considering I am already using bound parameters? I would like to use both.

Thank you in advance,
Matthew

Technically, it's possible. However, both do the same thing. So if you escape your string, the binding might escape the already escaped string again, leading to strange results (more quotes and backslashes than you bargain for).

pritaeas:

Thank you for your reply.

I just watched a YouTube video about this very question that I posted; They said that bound parameters were designed in fact to automatically sanitize input, so I imagine that using both bound parameters and escape strings would be redunadant.

Thanks again,
Matthew

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.