PHP Bros,
Is it true that Mysqli extension did not contain SQL injection proof communications with Mysql dB and so prepared statements was built ?
Is it true that when coding using the mysqli extension, you have to code using prepared statements method ?
And is it true that PDO was built with SQL injection proof method and so you do not need to use prepared statements method ?
If so, then using a basic PDO connection and Mysql dB communication command automatically creates an SQL injection proof connection ?
Do you mind showing 4 pfo code samples so I can learn from you ?
1. INSERT into dB tbl2. UPDATE row in dB tbl entry3. DELETE a certain row from dB tbl4. COPY certain row5. Connect to DB
You are welcome to provide any other code samples related to pdo dealing with dB.
Anything else I should know ?