开发者

Kohana 3.1 ORM Security Question

2023-03-09 21:42 问答作者：

Are all values escaped when using the ORM Module?

For example, if I have:

$user->where('username', 'LIKE', '%' . $this->request-post('user') . '%')->find_all()

Is this 开发者_如何学Gosafe?

Yes, ORM uses the query builder, which automatically escapes all values.

Creating queries dynamically using objects and methods allows queries to be written very quickly in an agnostic way. Query building also adds identifier (table and column name) quoting, as well as value quoting.

继续阅读：kohana orm

精彩评论

暂无评论...

登录注册

请自觉遵守互联网相关的政策法规，严禁发布色情、暴力、反动的言论！

验证码：

换一张

取消

问答排行榜

王昌瑞《潜梦追凶》剧组庆生新锐演员未来可期？
103010正在紧张有序的拍摄中，恰逢演员王昌瑞的生日。现场工作人员为他庆生，主演也送上祝福。
问答阅读(1497)
Is it allowed to ask users to enter credit card details for own payment method?
It seems to me Apple won\'t allow this, but I need to make sure. For an app we\'re building, we want to ask the user to enter payment information (including credit card details) to pay for tickets. T
问答阅读(1137)
Escaping "<" in Perl-generated XML
I need to generate an XML output using Perl code.I\'m trying not to use any libraries,as it\'s very simple, temporary XML that gets used by another step in the process.
问答阅读(1066)
imessage会显示已读吗？
是否在对方手机上显示已读，是由用户自行设置的。依次打开iPhone的“设置-信息”，会有一个“发送已读回执”的选项。将其打开，对方就能看到你，是否已经阅读了本条iMessage信息。将其关闭，对方就看不到。
问答阅读(587)
微信重新建群怎么建？
微信重新建群怎么开发者_Go百科建？产品名称：苹果手机产品型号：iPhone 11 系统版本：iOS 13
问答阅读(585)

Kohana 3.1 ORM Security Question

更多精彩内容

精彩评论

最新问答

央视是哪个频道？

请问买过的朋友，舒提啦旅行箱实际使用体验如何？？

检查不孕不育需要的费用？

海信ULED电视画质有什么不同的地方?？

钉子可以挂的住画框幕布吗？

问答排行榜

王昌瑞《潜梦追凶》剧组庆生新锐演员未来可期？

Is it allowed to ask users to enter credit card details for own payment method?

Escaping "<" in Perl-generated XML

imessage会显示已读吗？

微信重新建群怎么建？

更多精彩内容

精彩评论

最新问答

央视是哪个频道？

请问买过的朋友，舒提啦旅行箱实际使用体验如何？？

检查不孕不育需要的费用？

海信ULED电视画质有什么不同的地方?？

钉子可以挂的住画框幕布吗？

问答排行榜

王昌瑞《潜梦追凶》剧组庆生 新锐演员未来可期？

Is it allowed to ask users to enter credit card details for own payment method?

Escaping "<" in Perl-generated XML

imessage会显示已读吗？

微信重新建群怎么建？

王昌瑞《潜梦追凶》剧组庆生新锐演员未来可期？