Advanced Minds

  • Decrease font size
  • Default font size
  • Increase font size
  • default color
  • red color
  • green color
FireBoard
Welcome, Guest
Please Login or Register.    Lost Password?
FireBoard Programing PHP Programing
php sanitize html input PHP on the Rise (1 viewing) (1) Guests
Go to bottom Post Reply Favoured: 0
TOPIC: php sanitize html input PHP on the Rise
#2227
Paul Bramscher (Visitor)
Click here to see the profile of this user
Birthdate:
php sanitize html input PHP on the Rise  
Again, bullshit. The difference between executing a query and parsing a query into a resource and sending the resource to the SQL engine, is mostly an efficiency mechanism. If it will run as a query, it will parse in the query parser. There may be protections in the various SQL engines used, i.e. ensuring a query is readonly, but any time there is the inclusion of user submitted data, there is the possibility of a SQL injection. That's why you have to ALWAYS validate data submitted by users. And, of course, double-check the limits on the data_base_ user running the _script_/application.  If it has SELECT only access, a hacker can inject the string with as many UPDATE, INSERT and DELETE attempts as he wants
 
Report to moderator   Logged Logged  
  The administrator has disabled public write access.
Go to top Post Reply
Powered by FireBoardget the latest posts directly to your desktop
 
brak autoryzacji brak autoryzacji no auth sprawdz autoryzacje sprawdz autoryzacje
news broadcast hollis diving car loan online coupons for jewelry stores europe tours