hello
I would like to ask for something
here is my table
ID Name Brand
1 a Toyota
2 b Honda
3 c Toyota
4 d Honda
5 e Nissan
when I save the record, I use mysql_real_escape_string() on ID and Brand because I will only retrieve data with ID and Brand.
the question is what will be happen if I don't use mysql_real_escape_string() on Name? I mean security. pls tell me guys