ZF-12352: possilbe sql injection on order

Description

Fatal error: Maximum execution time of 30 seconds exceeded in Zend/Mime.php on line 152

when there is a ' in the order eg $select->order('id \' ASC');

Comments

Please use quoteInto for user input, or parameterize the query.