Trending SQL Injection Discussions

What is SQL injection?‎

Answers:

9

Followers:

9

Views:

190

Vote Count:

0

SQL injection ? What made you as penetration tester? ‎

What if black hat hackers call them self we are !what well you do as self wareed.‎

Answers:

1

Followers:

1

Views:

112

Vote Count:

0

What's the right way to prevent SQL injection in PHP scripts? ‎

Answers:

17

Followers:

5

Views:

597

Vote Count:

4

How to prevent SQL injection in PHP?‎

Answers:

7

Followers:

6

Views:

283

Vote Count:

0

How to avoid injection attacks and sanitize your code?‎

Answers:

2

Followers:

2

Views:

5

Vote Count:

0

 

Answer added by  Fadi Alkhateeb, Senior Front End Developer, NexTwo
10 years ago

Use prepared statements and parameterized queries (PDO & Mysqli). PDO : http://php.net/manual/en/book.pdo.php MYsqli : http://php.net/manual/en/book.mysqli.php   You ... See More

 

Answer added by  Mohammad Ateieh, Software Engineering Manager, Bayt.com
10 years ago

in PDO and MySqli you can bind the parameters and then excute the query another solution you can escape the parameters using "mysql_real_escape_string" its all ... See More

 

Answer added by  Mohammad Shalabi, Solution Architect, Android, and IOS Architect, ALM New Way
9 years ago

Use parameterized queries

 

Answer added by  Ahsan Aslam, Software Engineer, FiverRivers Technologies (pvt) Ltd
10 years ago

use a php function name 'mysql_real_escape_string()' but this function will be deprecated in5.5.0 version of php. but you can use MySQLi or PDO_MySQL for preven ... See More

 

Answer added by  Haroon Ahmad Dar, web developer, Swenggco Software
7 years ago

SQL injection contains some dynamic statements which can be pass into SQL error effected area and retrieve the desired results from database.