Anonymous Monk has asked for the wisdom of the Perl Monks concerning the following question:
In PHP there is a simple function, mysql_real_escape_string(), that takes whatever string you throw at it and escapes it for mysql.
Is there a perl function that will do the same? I know that $db->quote() exists, but it adds quotes around the string as well, which is not desired.
Is there a perl function that will do the same? I know that $db->quote() exists, but it adds quotes around the string as well, which is not desired.
|
---|
Replies are listed 'Best First'. | |
---|---|
Re: Preventing MySQL Injection
by Corion (Patriarch) on Jan 03, 2008 at 14:17 UTC | |
by Anonymous Monk on Jan 03, 2008 at 14:54 UTC | |
by moritz (Cardinal) on Jan 03, 2008 at 15:08 UTC | |
by jhourcle (Prior) on Jan 03, 2008 at 16:42 UTC | |
Re: Preventing MySQL Injection
by Joost (Canon) on Jan 03, 2008 at 14:51 UTC | |
by gamache (Friar) on Jan 03, 2008 at 15:42 UTC | |
by Joost (Canon) on Jan 03, 2008 at 19:57 UTC | |
by dsheroh (Monsignor) on Jan 03, 2008 at 20:33 UTC |
Back to
Seekers of Perl Wisdom