MySQL: PHP or direct access?

Mark Waddingham mark at
Thu Aug 13 19:56:44 CEST 2015

> Here 'unsafe' means something which has come from the client via some
> sort of user input without being vetted or checked.

I should clarify here that user input doesn't necessarily come from 
input fields in a UI - it can come from any data passed from the client 
to the server which originates from somewhere the user using the client 
can mutate.

For example, it could equally come from configuration text files on disk 
which the user can modify.


Mark Waddingham ~ mark at ~
LiveCode: Everyone can create apps

More information about the use-livecode mailing list