* * Because there is no PDO linked database directly used by the framework,
Therefore, anti-injection treatment should be carried out on sql,
I found a lot of them are filtering the parameters.
There is no injection prevention by PDO preprocessing (placeholder method),
Therefore, I would like to ask which great god has a POD anti-sql injection class written in PHP?
Please connect! Ask for the code! Please advise!
If there are other good ways to prevent SQL injection, please also advise the great god! **
Didn’t pdo have a prepare? Is it used to prevent injection