Page 1 of 1

[PHP] Anti MYSQL injection

Posted: Thu Oct 26, 2006 9:28 am
by thiscatis
Hi!

Is there an easy way of protecting your php pages against mysql injections?
I remember seeing something like that once..

greetings,
thiscatis

Posted: Thu Oct 26, 2006 9:38 am
by kaszu

Posted: Thu Oct 26, 2006 9:39 am
by andym01480
Checking all user input in forms is what you want it to be. http://pixelated-dreams.com/uploads/mis ... tSheet.pdf

Globals off - default in >4

Making sure all variables are unset before use incase someone adds them to the url eg
http://www.url.com?variable=naughtyvalue

mysql_real_escape_string http://uk2.php.net/manual/en/function.m ... string.php