Questions tagged as 'sql-injection'

Tagged questions
9
answers

How to prevent SQL injection in my PHP code?

I developed a page in PHP for internal use of the company I work with and only very few people use it. You can use this page to do some queries, insertions, changes and deletions of a table in a MySQL database, however I believe that my PHP code...
asked by 03.02.2014 / 13:37
9
answers

How to prevent SQL injection in my PHP code?

I developed a page in PHP for internal use of the company I work with and only very few people use it. You can use this page to do some queries, insertions, changes and deletions of a table in a MySQL database, however I believe that my PHP code...
asked by 03.02.2014 / 13:37
1
answer

PDO SQL Injection Doubt

I'm venturing a bit with PDO, still in the beginning, and I have a question regarding a query with SQL Injection, it follows: $insert = "INSERT INTO tabela (campo1, campo2, campo3) VALUES (:valor1, :valor2, :valor3)"; $db = new db(); $db = $...
asked by 19.05.2018 / 23:26
9
answers

How to prevent SQL injection in my PHP code?

I developed a page in PHP for internal use of the company I work with and only very few people use it. You can use this page to do some queries, insertions, changes and deletions of a table in a MySQL database, however I believe that my PHP code...
asked by 03.02.2014 / 13:37
0
answers

Idea for cleaning and data-processing library

I need to make a library for data processing, so I can use it before calling functions such as: Register, Change, Delete and etc ... I am using PDO for communication with the mysql database, and the method itself already has some security mea...
asked by 17.09.2017 / 13:50
9
answers

How to prevent SQL injection in my PHP code?

I developed a page in PHP for internal use of the company I work with and only very few people use it. You can use this page to do some queries, insertions, changes and deletions of a table in a MySQL database, however I believe that my PHP code...
asked by 03.02.2014 / 13:37
2
answers

using mysqli_prepare prevents major attacks from sql injection [duplicate]

I know that mysqli_prepare tuning is used to prepare SQL queries and protect them against SQL Injection. I found two pages about SQL Injection: link link I'm starting to study on the subject, and I was wondering if the mysqli_p...
asked by 19.02.2017 / 15:44
1
answer

Problem creating SQL INJECTION security

   I have a PHP function where I pass the data to it and the same as an UPDATE in the data. but I'm doing security against SQL INJECTION, but it's not working what would be the problem? Here is the code for the function: function alterar($upd...
asked by 27.07.2017 / 15:12
2
answers

What is the risk of this injection? [duplicate]

Personally, what risk would I run if someone wanted to give an injection in this example: $valorGet = $_GET["valor"]; $sql = "SELECT * FROM tabela WHERE caminho = '$valorGet'"; My question is, can the guy delete (DELETE) or insert (INSERT...
asked by 02.09.2015 / 20:45