Variable binding in PHP ADOdb

Question

Does ADOdb do data sanitation or escaping within the same functionality by default? Or am I just confusing it with Code Igniter\'s built-in processes?

Does binding v

Answer 1

Correct - bound parameters are not vulnerable to SQL injection attacks.

Answer 2

yes, you pass the array of parameters.

$rs = $db->Execute('select * from table where val=?', array('10'));

Rest of their docs can be found here: