Input values embedded in sql statements should be screened, Ask an Expert

Programming

Input values embedded in SQL statements should be screened for inappropriate characters that can form the basis so-called SQL Injection attacks, a type of security attack that may undermine the SQL statements your PHP code executes. The built-in PHP function mysql_real_escape_string can help to replace such inappropriate strings with safe input. Refer to the IT 202 manual index for the use of this function. Note also the reference in the manual to the Mitre security threat analysis. The mysql_real_escape_string function transforms the input data it is applied to and the new data is then used for the database interaction. If the original data was not suspicious, there will be no affect; the changes only affect inappropriate input characters. Honor's students must use prepared statements.

View complete question

PHP , Programming

Category:- PHP
Reference No.:- M9533172

Have any Question?Write your Review or question?

Ask Experts for help!!

Looking for Assignment Help?

Start excelling in your Courses, Get help with Assignment

Write us your full requirement for evaluation and you will receive response within 20 minutes turnaround time.

Ask Now Help with Problems, Get a Best Answer

Recent Questions

Ask PHP Expert

Programming

Related Questions in PHP

Question using the course software and week one template as

Question develop a 5-6 page word document that describes

Question continue to build on the skills of providing web

In php write a simple addtion calculator that reads in two

Final project assignment -requirements specifications -1

Ask Experts for help!!

Looking for Assignment Help?

Why might a bank avoid the use of interest rate swaps even

Describe the difference between zero coupon bonds and

Compute the present value of an annuity of 880 per year

Compute the present value of an 1150 payment made in ten

Compute the present value of an annuity of 699 per year

Follow Us