[ic] Interchange security releases: 5.7.2, 5.6.2, 5.4.4
Peter
peter at pajamian.dhs.org
Fri Sep 25 12:29:02 UTC 2009
On 09/25/2009 05:20 AM, Rick Bragg wrote:
> Ah! I love the new search form idea. can I also use just a [query] tag
> instead of [loop] on the results?
Yes, of course. Just be careful to filter your inputs or you could end
up with an SQL injection vulnerability. I recommend the dbi_quote filter:
<http://www.interchange.rtfm.info/icdocs/filters/dbi_quote.html>
Peter
More information about the interchange-users
mailing list