Which is the most secure approach for handling dynamic data in SQL queries?

A.
Use addslashes().

B.
Enable magic_quotes_gpc.

C.
Use prepared statements if supported by the database library, data-specific escaping functions
otherwise.

D.
Use stored procedures.