[Date Prev][Date Next] [Chronological] [Thread] [Top]


Any of the developers would mind shedding light as to
why filter_escape_value is ised on the filter that's received
in a request? As far as i understood the escaping needs to
be done on the client side (in order to distinguish special characters
as parts of string from their "special" meaning to a filter parser).
By the time filter arrives at the server, shouldn't it have had all the
special characters parsed already?