> When using forms, when do I have to worry about cleaning up user data?
I
> know to use escapeshellarg() when using system functions, but how
about
> when
> using the user data for database inserts? Also, if I do not insert the
> data
> into the database or use any system commands, do I still need
It all depends on what you will do with the data... The use will dictate
the level of cleaning up.
You MUST clean it up for DB entries as you mentioned, but if you are
only going to e-mail the contents "as-is" to yourself etc, then cleaning
up the data becomes of lesser importance.
On Sun, 2003-03
2 matches
Mail list logo
