RSS FullRecent Posts
- GreenSQL, Open Source Database Firewall Solution
- Cleaning MySQL Queries
- Tutorial: Hacking: Basics of NMAP!
- BSQL (Blind SQL) Hacker v0.908 beta released
- Securing MySQL’s Default Installation - Quick And Dirty Too!
Recent Comments
- luca on XSS in mysql_error()
- Jacob Tuscon on SQL Power Injector 1.2 released - TechRepublic
- MySQL Security » MySQL Security Update Fixes Restrictions Bypass and Library … on MySQL Security Update Fixes Restrictions Bypass and Library ...
SQL-injection
Filed under widgetinfo, flat, layout, widgetmanager, sql-injection, menu, blog-archive, sql, injection
preventing SQL injection for mySQL and PHP use the function mysql_real_escape_string() $usersname = mysql_real_escape_string($_POST[’usersname’]) the code will add backslash ( \ ) on a single quote ( ‘ ) the above code will generate the …
development …
See the original post here:
SQL-injection
Related Posts
- Simple SQL Injection
- Classic SQL Injection Tutorial
- Exploitler
- Create a General database class in PHP (4)
- PHP/MySQL: The Escape Method Done Right
October 16th, 2007.
Leave a Comment