View Full Version : How to prevent SQL Injection in mysql?
addisoncave
09-07-2016, 01:40 AM
Hello Guys,
I have heard about SQL injection, that is a very dangerous thing that can harm the database. so i want to know how i can prevent sql injection to infect my database via my php page. I'm using MySQL database with PHP extension mysqli
truong320909
09-16-2016, 11:32 PM
you can make them in SQL forum
jackthomas087
09-24-2016, 07:25 AM
Prepared Statements do not combine variables with SQL strings, so it is not possible for an attacker to modify the SQL statement.
StuartSpindlow7
10-08-2016, 08:45 AM
I have no ideas about this.
jack28012009
10-10-2016, 12:14 PM
Working with SQL statements, you absolutely not be added to the parameter string you for user input.
You must remove the special characters used in the query
michanik
10-11-2016, 11:49 AM
What happens is that the SQL statement you pass to prepare is parsed and compiled by the database server.
Powered by vBulletin® Version 4.2.4 Copyright © 2026 vBulletin Solutions, Inc. All rights reserved.