SQL Injection

    Date: 07/14/05 (PHP Community)    Keywords: php, mysql, sql

    Whenever I've got a mysql query and the user is inputting something in a feild (let's just say for example a login page), I add addslashes to every GET and POST request. Is there anything else I can do to protect myself from sql injection? I'm fairly new to mysql so I'm not entirely sure of all of its commands and what not. I thought it would be appropriate to post this in a PHP community, though, because everything that I would have to worry about is in my php coding.

    Any help is greatly appreciated.

    Source: http://www.livejournal.com/community/php/318792.html

« Understand Error messages || Where am I? »
Search  •  Site Map  •  Set as Homepage  •  Add to Favourites  • 
antivirus | apache | asp | blogging | browser | bugtracking | cms | crm | css | database | ebay | ecommerce | google | hosting | html | java | jsp | linux | microsoft | mysql | offshore | offshoring | oscommerce | php | postgresql | programming | rss | security | seo | shopping | software | spam | spyware | sql | technology | templates | tracker | virus | web | xml | yahoo | home