Quote:
After rereading my post my usage of "should be validated" seems a bit ambiguous. By saying "should be validated" I mean the inputs should be specifically checked and validated, and not "assume each input is valid by default".
|
Which is exactly what I was getting at. Stupid ways of preventing SQL injection attacks run amok on the internet. The Daily WTF is a good way of seeing them directly.