Skip to content

askmeaboutlinux

Knowledge not shared benefits no one.

Home
About Ask Me About Linux

Small step to prevent SQL injection in MySQL

Geetu R. Vaswani MySQL March 25, 2010 1 Minute

Use mysql_real_escape_string($string_var) to be used for every string variable.

Eg: $tip_no = mysql_real_escape_string($_POST[‘tip_no’]);

Then build the update string using the result of above statement.

Share this:

Twitter
Facebook

Like this:

Like Loading...

Related

Published by Geetu R. Vaswani

View all posts by Geetu R. Vaswani

Published March 25, 2010

Post navigation

Previous Post Pagination in MySQL

Next Post Huge MySQL table. Use index to speed queries

Search for:

@askmeaboutlinux

Tags

adb android android apps android emulator android studio applications Apps apt-get audio boot cross-platform cryptography desktop eclipse email email client encryption error evolution fedora Fedora 15 fedora 16 firefox firmware Gnome Gnome 3 gnucash gnupg GNU Privacy Guard google google drive gpg hardware install installation internet java java GUI java program key pair keyring Linux linuxmint linux mint Linux Shell mobile multimedia network openwrt package Package Manager packages privacy private key program programming public key router security services shell shell prompt software sony xperia zr swing terminal thunderbird ubuntu upgrade virtualbox windows wireless router wordpress XFCE xubuntu

Website Powered by WordPress.com.

Follow Following
- askmeaboutlinux
- Already have a WordPress.com account? Log in now.

%d bloggers like this: