RSS FullRecent Posts
- MySQL Dumper | Dropsec
- PHP Security: SQL Injection | Zend PHP 5 Certification Blog
- PHP Security: SQL Injection | Zend PHP 5 Certification Blog
- CodeIgniter Version 1.7 » Agito.log
- Nested Loops vs Hash Join, The SOA Limitation « poeticcode
Recent Comments
- luca on XSS in mysql_error()
- Jacob Tuscon on SQL Power Injector 1.2 released - TechRepublic
- MySQL Security » MySQL Security Update Fixes Restrictions Bypass and Library … on MySQL Security Update Fixes Restrictions Bypass and Library ...
Protecting WordPress from SQL Injection Attacks
Published by | Filed under post-a-comment, development, real, pressed-words, middot, sql, php, database, security, escape, blog, wordpress, mysql
What he means is that in general WordPress does not sanitize MySQL queries. He recommends that WordPress provide “a proper set of SQL safe functions (ie $wpdb->escape_int and $wpdb->escape_str” and “use mysql_real_escape_string(), …
escalation http local php privilege tools vulnerabilities x org x serverescalation, http, local, php, privilege, tools, […]
January 23rd, 2008. Comment now »
