I have a few global functions with this basic structure:
function UpdateModuleName($moduleID){
return ExecuteScalar("SELECT Module FROM Updates_Modules WHERE id='".$moduleID."'");
}
Is there any difference in terms of security (sql injections) using this instead?
function UpdateModuleName($moduleID){
$query = ExecuteScalar("SELECT Module FROM ClassAct_Updates_Modules WHERE id='".$moduleID."'");
return $query;
}