[TYPO3] Making querystrings SQL safe?
Bob
bitsandbob at googlemail.com
Thu Apr 3 23:30:53 CEST 2008
Hi,
I'm gradually getting my head around Typoscript and developing my first
sites, but have a quick question that's stumping me at the moment...
If I want to use a parameter from a querystring (e.g. "GPvar:day") in a
"select.andWhere", what the quickest / easiest way to make it "SQL safe"
(e.g. to handle any apostrophes)?
Currently, my code is something like the following:
table = pages
select.andWhere.data = GPvar:day
select.andWhere.wrap = title LIKE '|'
However, "GPvar:day" could contain apostrophes which would cause
undesirable behaviour...
Thanks,
Bob
More information about the TYPO3-english
mailing list