Gizmodo Posted November 2, 2006 Posted November 2, 2006 This is probably a stupid question, but my server has mysql_real_escape_string, so is there any reason I would ever want to use tep_db_prepare_input over tep_db_input? Looking at the code I don't see why I would. Tep_db_prepare_input looks like it strips slashes. Why would I want to do that befor adding something to the db? Don't I want to add slashes when inserting into a database? Thanks.
New 
Recommended Posts
Archived
This topic is now archived and is closed to further replies.