PHP : Security : Magic Quotes : Why use Magic Quotes
-
Useful for beginners
Magic quotes are implemented in PHP to help code written by beginners
from being dangerous. Although
SQL Injection
is still possible with magic quotes on, the risk is reduced.
-
Convenience
For inserting data into a database, magic quotes essentially runs
addslashes() on all Get, Post, and Cookie data,
and does so automagically.
|
|