Member Avatar for glut

Hey, I'm currently using mysql_real_escape_string() to protect against SQL injection. Is there a way to exploit this? I have already tried \ to try to make the query \\', thus making it just a regular backslash. I have heard of the Big5 exploit, but I don't know how to use it / protect against it.

Thanks so much, Glut.

  • 2 Contributors
  • 1 Reply
  • 74 Views
  • 9 Hours Discussion Span
  • Latest Post Latest Post by pritaeas
Member Avatar for pritaeas

Big5 is a character set, don't use it.

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.