• I hadn't considered the SQL Injection aspect of this question. Thanks for pointing that out.