https://bugzilla.wikimedia.org/show_bug.cgi?id=63224
--- Comment #21 from Chris Steipp <cste...@wikimedia.org> --- (In reply to Thiemo Mättig from comment #17) > Yes, it does. Chris seems to confuse this with is_numeric. To be sure you > can always add an extra floatval( $var ) or (float)$var to the places where > the variable is used inside of a string, especially if it's a possible SQL > injection. Not confusion, but concern that it might suffer from the same issues. > (In reply to Chris Steipp from comment #15) > > I'm not sure if php accepts other formats that might include a space > > Simple answer: No. http://php.net/language.types.float.php Thanks for the link, that does clarify my concern was invalid. So yes, floatval looks like it should be fine. -- You are receiving this mail because: You are on the CC list for the bug. _______________________________________________ Wikibugs-l mailing list Wikibugs-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
