RSS FullRecent Posts
Recent Comments
- luca on XSS in mysql_error()
- Jacob Tuscon on SQL Power Injector 1.2 released - TechRepublic
- MySQL Security » MySQL Security Update Fixes Restrictions Bypass and Library … on MySQL Security Update Fixes Restrictions Bypass and Library ...
InsuranceLand.net - recommended car insurance quotes website to visit
Browse by Tag
ajax blog blog archive categories code css database database security development exploit flat google guitar hosting html injection internet javascript Links linux menu mysql MySQL Security mysql shell new news oracle password php php mysql security programming really simple syndication registerwidget search security select seo server software sql sql injection technology update utf vulnerability web widgetinfo widgetmanager wordpress xmlPHP Security considerations, a quick reference for the newbies.
Filed under saiweb, php-mysql-real-escape-string, mysql-real-escape-string, newbies, view-all-posts-in-php, considerations, saiweb-php-security, reference, injection, security, php, sql, view-all-posts-in-mysql, mysql
Passing RAW globals to mysql! ie. $sql = “SELECT * FROM users WHERE email=’.$_GET[’email’].”‘ and password=’”.$_GET[’password’]”‘” $result = mysql_query($sql);. So what is wrong with the above? SQL INJECTION welcome to a world where …
iis securityiis security
Read the original here:
PHP Security considerations, a quick reference for the newbies.
March 20th, 2008. Comment now »
