I have an MVC web application, and I'm wondering where the best place to escape data to send to a database is: the controller or model. I can't think of any arguments toward either side. Is there an accepted place to escape data? If not, what are the pros and cons of escaping data in a given tier?I have an MVC web application, and I'm wonderin