I bind all variables to all kind of statements (UPDATE
/INSERT
/SELECT
etc.) using the bind_param()
function. But I am confused with bind params.
Do I also need to use real_escape_string even though I use bind_param? Are both of them completely different things?