Hacker
Reputation: 7906
Is storing php array in mysql as serialized harmful?
I have some data data as array in php and i am storing this as serialized in mysql table in a single column. Does this have any potential harm ?
Upvotes: 0
Views: 150
Answers (1)
Uday Sawant
Reputation: 5798
You can use "mysql_real_escape_string()" to escape unwanted codes before storing the data in mysql. Also stripslashes() and addslashes() functions are available. These functions escapes special characters in a string so you can store and retrieve the data safely.
Still it may affect the performance to some extent.
Upvotes: 2
Related Questions
- Is the PHP serialize a must if I want to store an object or aray to mySQL?
- Storing serialize array in database?
- Serialize an array to store it versus create a specific table in mysql
- MySQL and Serialized Data, it's fine?
- Saving data as array or individual fields (php/MySQL)
- Sanitizing when storing serialized array
- Why should I not insert serialized arrays into my database field?
- what's the point of serializing arrays to store them in the db?
- Should Database Data Be Serialized?
- serializing an array and storing in DB