Database Security

Saturn does not automatically escape strings.

You must ensure you perform this step before passing data into a query.

It's important to escape strings before you pass them into the database, as DBMS does not do this automatically.

use Saturn\DatabaseManager\DBMS;
$DB = new DBMS();

$Data = $DB->Escape($Data);

// Now safe to perform a query with the data.

Last updated 1 year ago