mysql-escape-string-polyfill

a very insecure mysql_escape_string implementation for a very limited use case

View on GitHub

mysql-escape-string-polyfill

Build Status codecov

mysql-escape-string-polyfill is a very insecure mysql_escape_string implementation (PHP 7.1/7.2) for a very limited use case

Usage

  1. Install this package via composer: composer require andrewbreksa/mysql-escape-string-polyfill
  2. Find all the places you use the mysql_* functions, and refactor your code to use PDO

Limitations

Hacking on the complex source code

The implementation can be found in functions.php, and you can run tests by executing composer test