Page 1 of 1

Checking your queries for malicious input? Input wanted...

Posted: Fri Nov 22, 2002 9:37 am
by superwormy
Always keep hearing you should check all user input to make sure its not malicious code before you insert it into the database. Fine, thats all good.

But what exactly shoudl I be looking for? Are there some general things I shoiuld ALWAYS be doing to the data that gets inserted into the database to make sure people can't fvck with my database queries?