Le dimanche 25 juin 2006 à 10:59 -0600, Tony Lambregts a écrit :
[...]
> I am more in favor of this approach than using makeSafe() and do the same
> thing
> as Chris's query_parameters() patch. However I am hard pressed to say whether
> this method is really better or safer than query_parameters
Jonathan Ernst wrote:
Hi,
I followed your discussions about sql/html injection and had a look at
what you are doing in order to fix the situation and I don't want to
offense anybody but I feel that what you are trying to do is a bit hacky
;-).
Here is a cleaned up version of the comments handli
