Quote Originally Posted by honeymonster View Post
To take an example from earlier in this thread:

Code:
$this->db->select('title')->from('mytable')->where('id', $id)->limit(10, 20); 

mysql_query("SELECT title FROM mytable WHERE id = $id LIMIT 10,20");
See if you can guess which one is suspectible to SQL injections?
Both.