#1
  1. No Profile Picture
    Banned
    Devshed Newbie (0 - 499 posts)

    Join Date
    Nov 2013
    Location
    22 rue Foch,5070 Akwa Douala Cameroon
    Posts
    9
    Rep Power
    0

    Thumbs up How to deal with SQL injection ?


    How to deal with SQL injection and mysql real escape string.?
  2. #2
  3. No Profile Picture
    Contributing User
    Devshed Novice (500 - 999 posts)

    Join Date
    Jun 2009
    Posts
    720
    Rep Power
    7
    Do not use mysql_ anymore. Look into MySQLi or PDO. As far as injections, be safe and look into Prepared Statements.
    He who knows not and knows not he knows not: he is a fool - shun him. He who knows not and knows he knows not: he is simple - teach him. He who knows and knows not he knows: he is asleep - wake him. He who knows and knows he knows: he is wise - follow him
  4. #3
  5. --
    Devshed Expert (3500 - 3999 posts)

    Join Date
    Jul 2012
    Posts
    3,959
    Rep Power
    1014
    The 6 worst sins of security ē How to (properly) access a MySQL database with PHP

    Why canít I use certain words like "drop" as part of my Security Question answers?
    There are certain words used by hackers to try to gain access to systems and manipulate data; therefore, the following words are restricted: "select," "delete," "update," "insert," "drop" and "null".

IMN logo majestic logo threadwatch logo seochat tools logo