Results 1 to 28 of 28

Thread: prevent sql injections

Thread Tools
- Show Printable Version
Display
- Switch to Linear Mode
- Switch to Hybrid Mode
- Threaded Mode

Threaded View

Previous Post

Next Post

Jul 2nd, 2009, 10:38 AM #1
sridharao

View Profile

View Forum Posts

Visit Homepage
Thread Starter
Lively Member

Join Date

Feb 2007

Posts

106
prevent sql injections

There are scores of articles out there on this, the more I read the more I get confused. Can anyone here explain in clear "classroom-like" manner about the basics involved.

All I have been doing to the posted form elements is to add stripslashes() not knowing if it is sufficient.

There are magic_quotes, mysql_real_escape_strings, htmlentities() or htmlspecialchars() etc.etc. I have a confusion on their usage. How and when should these be used? Which is more appropriate and when?

Last edited by sridharao; Jul 2nd, 2009 at 11:41 AM.

Save trees, avoid plastics, say no to zoo, go veg, recycle as much, live holistic
Reply With Quote

Quick Navigation PHP Top

« Previous Thread | Next Thread »

Posting Permissions

You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
[VIDEO] code is On
HTML code is Off

Click Here to Expand Forum to Full Width

Terms and Conditions | About Us | Privacy Notice | Contact Us | Advertise | Sitemap| California - Do Not Sell My Info

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

All times are GMT -5. The time now is 05:22 PM.