-
Type: Feature Request
-
Status: Closed
-
Priority: Minor
-
Resolution: Fixed
-
Affects Version/s: 5.1.3
-
Fix Version/s: 5.2.0-B1
-
Component/s: Database
-
Labels:
-
External issue URL:
-
Change Log Message:Adds qstrArray function to escape whole array
-
Story Points:1
-
External issue ID:1180
-
Copy Issue Key:
-
Patch Instructions:
In-Portal uses "kDBConnection::qstr" function to escape user request variables before placing their values into database. This prevents sql injections.
However there are cases, when there is a need to escape whole array of values.
I've created kDBConnection:qstrArray function that easily allows to do that.
- mentioned in
-
Wiki Page Loading...