I am developing a project that involves passwords among other important information that I need to insert into the mysql database.
My question is which option should I use to escape this data against sql injection. Right now I'm using a regular expression that removes the unwanted characters. I'm using the PDO.