Is it possible to have parameterized commands or prepared statements in javascript or php. I see it is possible in java and in database queries? Thanks!
Asked
Active
Viewed 69 times
1 Answers
0
Speaking of PHP - yes. See PDO tag wiki for the example
Speaking of JS, you have to understand that it is impossible with client-side javascript, but with some server-side version it is quite possible too.
Community
- 1
- 1
Your Common Sense
- 156,878
- 40
- 214
- 345
-
So when we say prepared statement or parameterized commands we only mean in the context of querying the database. Can't prepared statements be for PHP commands, which may fall prey to malicious input(for example user gives php code as input) that may execute the attack. Sorry new to this so just wanted to clarify. – DevD Sep 03 '13 at 05:36
-
Generally speaking - yes, we are using the term only in the context of querying database. If your question is out of idle curiosity, this answer is enough. If you have more certain question or a task to perform, you are welcome to ask. – Your Common Sense Sep 03 '13 at 06:23