Protection against suspicious data, PHP Web Programming

Input values embedded in SQL statements should be screened for inappropriate characters that can form the basis so-called SQL Injection attacks, a type of security attack that may undermine the SQL statements your PHP code executes.  The built-in PHP function mysql_real_escape_string can help to replace such inappropriate strings with safe input.  Refer to the IT 202 manual index for the use of this function.  Note also the reference in the manual to the Mitre security threat analysis.  The mysql_real_escape_string function transforms the input data it is applied to and the new data is then used for the database interaction.  If the original data was not suspicious, there will be no affect; the changes only affect inappropriate input characters.  Honor's students must use prepared statements.

Posted Date: 3/29/2013 6:14:16 AM | Location : United States

Related Discussions:- Protection against suspicious data, Assignment Help, Ask Question on Protection against suspicious data, Get Answer, Expert's Help, Protection against suspicious data Discussions

Write discussion on Protection against suspicious data
Your posts are moderated
Related Questions
FF-Greek Dairy Website Seeking a 5-6 Page Content driven website for a diary to feature products from the store, The aptitude to edit from the back-end any pictures and product

We are seeking a proficient coder with designer Our company is in its premature state as well as we are looking for someone who is proficient in both coding and web page design.

This is an acronym for Transmission Control Protocol / Internet Protocol. This is a collection of applications, protocols and services. TCP/IP protocol was developed prior to the O

PSD to Wordpress I am seeking for a skilled web programmer in HTML to transform my PSD into HTML. I have two PSD right now. What I am seeking is a great freelancer that I

I want help in Opencart (MijoShop) dev -Bespoke Duty/Vat and shipping We have a client who vends wines which are either purchased to be shipped to the customer (as standard) OR

Web Design/Programming (small project) Seeking strong CSS/HTML/Bootstrap skills for a small update to an existing webpage. Existing page wants overall UI updates/content mark

Define the Document Page Title However the document has a file name, notice it is labelled Untitled Document still; that is because it required an HTML document name, or page ti

I want HTML/CSS/JS of a new website from design files I have several artwork that I created to my company's new website however we are really busy here right now as well as we w

The tag is used to specify where user input is expected.  It has distinct attributes, of which the TYPE attribute is used to indicate the kind of input i.e. to be pro