You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: user_guide_src/source/database/query_builder.rst
+5-6Lines changed: 5 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -148,7 +148,7 @@ Since v4.2.0, ``$builder->select()`` accepts a ``CodeIgniter\Database\RawSql`` i
148
148
149
149
.. literalinclude:: query_builder/099.php
150
150
151
-
.. warning:: When you use ``RawSql``, you MUST escape the data manually. Failure to do so could result in SQL injections.
151
+
.. warning:: When you use ``RawSql``, you MUST escape the values and protect the identifiers manually. Failure to do so could result in SQL injections.
152
152
153
153
$builder->selectMax()
154
154
---------------------
@@ -265,7 +265,7 @@ Since v4.2.0, ``$builder->join()`` accepts a ``CodeIgniter\Database\RawSql`` ins
265
265
266
266
.. literalinclude:: query_builder/102.php
267
267
268
-
.. warning:: When you use ``RawSql``, you MUST escape the data manually. Failure to do so could result in SQL injections.
268
+
.. warning:: When you use ``RawSql``, you MUST escape the values and protect the identifiers manually. Failure to do so could result in SQL injections.
269
269
270
270
*************************
271
271
Looking for Specific Data
@@ -322,8 +322,7 @@ methods:
322
322
323
323
.. literalinclude:: query_builder/026.php
324
324
325
-
.. warning:: If you are using user-supplied data within the string, you MUST escape the
326
-
data manually. Failure to do so could result in SQL injections.
325
+
.. warning:: If you are using user-supplied data within the string, you MUST escape the values and protect the identifiers manually. Failure to do so could result in SQL injections.
327
326
328
327
.. literalinclude:: query_builder/027.php
329
328
@@ -336,7 +335,7 @@ methods:
336
335
337
336
.. literalinclude:: query_builder/100.php
338
337
339
-
.. warning:: When you use ``RawSql``, you MUST escape the data manually. Failure to do so could result in SQL injections.
338
+
.. warning:: When you use ``RawSql``, you MUST escape the values and protect the identifiers manually. Failure to do so could result in SQL injections.
340
339
341
340
.. _query-builder-where-subquery:
342
341
@@ -451,7 +450,7 @@ searches.
451
450
452
451
.. literalinclude:: query_builder/101.php
453
452
454
-
.. warning:: When you use ``RawSql``, you MUST escape the data manually. Failure to do so could result in SQL injections.
453
+
.. warning:: When you use ``RawSql``, you MUST escape the values and protect the identifiers manually. Failure to do so could result in SQL injections.
0 commit comments