A sanitize function was added to prevent SQL injection by stripping certain characters. It

Question

0

Asked: June 3, 20262026-06-03T23:02:57+00:00 2026-06-03T23:02:57+00:00

A sanitize function was added to prevent SQL injection by stripping certain characters. It

0

A sanitize function was added to prevent SQL injection by stripping certain characters. It sure is hard to manually go through all the files and find where the function should be added. Is there a way to automate this process or use find/replace? What I’m currently doing is looking for SELECT, UPDATE or INSERT statements and inside them I look for #...# and replace it with #sanitize(...)# but it may be more complicated if there are multiple columns being updated in a table.

EDIT: can grep be used? If you don’t know the answer please consider voting this question up.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-03T23:02:59+00:00

Editorial Team

2026-06-03T23:02:59+00:00Added an answer on June 3, 2026 at 11:02 pm

sql injection can take place in a SELECT call as well as any other sql call. Not just UPDATE and INSERT.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

A sanitize function was added to prevent SQL injection by stripping certain characters. It

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply