I have a stored procedure in MySql where the input comes from user. I want to avoid SQL injection. Is there any function in MySql which does prevent SQL injection, I have googled but most websites show me the php I have a stored procedure in MySql where the in