mysql injection

Question

crazynp 0 Junior Poster in Training

17 Years Ago

Hi,

How safe is to allow users to submit the entries with single or doube quotations to the database?

and wondering is there any free site or service to check vunerabilities of the site?

Hope to see it in daniweb.

Thanks!

php

3 Contributors
3 Replies
84 Views
1 Day Discussion Span
Latest Post 17 Years Ago Latest Post by w_3rabi

All 3 Replies

stymiee 111 He's No Good To Me Dead

17 Years Ago

Use mysql_real_escape_string an all user entered data and any string that needs to have characters escaped.

Reply to this topic

Be a part of the DaniWeb community

We're a friendly, industry-focused community of developers, IT pros, digital marketers, and technology enthusiasts meeting, networking, learning, and sharing knowledge.

crazynp 0 Junior Poster in Training · Answer 1 · 2007-04-13T21:15:19+00:00

Thanks!
can you guide me
apart from mysql injection, is there any known security risk wih php and mysql?

w_3rabi 8 Junior Poster · Answer 2 · 2007-04-14T10:43:50+00:00

dude you could check this article out
http://www.sitepoint.com/article/php-security-blunders

mysql injection

Recommended Answers Collapse Answers

All 3 Replies

Recommended Answers