I assume Bubble prevents against SQL injection in all input fields, etc. Can anyone confirm? Additionally, with the new Vanilla Rich Text Editor (i.e., WYSIWYG), I confirmed with it’s author that the HTML text is being converted to plain text on the client and then Bubble stores it as plain text. …

Preventing SQL Injection in Bubble + WYSIWYG Plugin

Blake March 27, 2020, 2:41pm 4

Seems like this is the only other post on the topic here in the forum.

So I’m going to guess there’s nothing we need to do (like like limiting character types on input fields) in order to prevent SQL injections ?
But XSS might be another topic…

1 Like

Topic		Replies	Views
Form field validation for Code Injection Database	1	324	May 28, 2022
How can I force a single quote (') or % character in my SQL LIKE query? Database	8	5433	May 12, 2019
[HELP] Bubble MySQL DB Connector issue Need help	5	994	September 4, 2019
Ability to query DB with SQL for data validation? Plugins	0	447	November 28, 2017
Can you send SQL string to Bubble.io database to retrieve data? Database	1	268	November 25, 2022

Preventing SQL Injection in Bubble + WYSIWYG Plugin

Related topics