View Single Post
  #9  
Old 05-02-2018, 12:50 PM
 
simetria simetria is offline
 

Advanced Member
  
Join Date: Jul 2013
Posts: 77
 

Default Re: Proper method for creating a new table in X-Cart 4.6.1

Carrie, one thing that confuses me is how x-cart handles the data before it gets sent to the database. I'm pretty familiar in using PDO and MYSQLI with prepared statements, but going through the modules and seeing what they do to sanitize/validate/strip is confusing to me.

Does strip_tags suffice? Do I need to use mysqli_real_escape_string? Something else?

What is X-Cart using as a database function PDO or MYSQLI?

Whats the desired convention in preparing data to either be stored, modified, deleted, or queried?

I tried also looking through the docs and couldn't not land on any page that would answer these questions for me.

Thanks again!!!!

-S
__________________
Thanks.
Reply With Quote