DEV Community

Discussion on: Login best practices

Collapse
kamiltekiela profile image
Kamil Tekiela

Never escape data going to SQL. Instead use parameterized prepared statements. Escaping is not safe and is a relic of PHP from 20 years ago.