Hi guys . How to protect yourself from SQL Injection?
Specially Inputs???
I know i can google it but i think experiences are more useful.
For further actions, you may consider blocking this person and/or reporting abuse
Steve Pe -
HIPHOP and CODE -
Marcos Schwaab -
Claire D. -
Once suspended, amirdev will not be able to comment or publish posts until their suspension is removed.
Once unsuspended, amirdev will be able to comment and publish posts again.
Once unpublished, all posts by amirdev will become hidden and only accessible to themselves.
If amirdev is not suspended, they can still re-publish their posts from their dashboard.
Once unpublished, this post will become invisible to the public and only accessible to amirhossein.
They can still re-publish the post if they are not suspended.
Thanks for keeping DEV Community safe. Here is what you can do to flag amirdev:
Unflagging amirdev will restore default visibility to their posts.
Top comments (4)
Prepared statements has pretty much solved this problem
Preparing and then binding parameters? Yes and also you can use addslashes method in PHP it gives a backslash before characters and this protects you from SQL Injection ...
addslashes don't prevent SQL injection.
php.net/manual/en/function.addslas...
The addslashes() is sometimes incorrectly used to try to prevent SQL Injection. Instead, database-specific escaping functions and/or prepared statements should be used.
Why is SQL injection still a thing?
Zohar Peled ・ Jul 16 ・ 1 min read