Thomisback Posted April 14, 2008 Share Posted April 14, 2008 Hi, My database is being hacked a lot of times, about 3 times a night. I know what scripts are vulnerable but I don't how to filter my POST's and GET's, has anyone got an example or a class that filters the users input? Thanks a lot! Link to comment https://forums.phpfreaks.com/topic/101008-sql-injection-security/ Share on other sites More sharing options...
Thomisback Posted April 14, 2008 Author Share Posted April 14, 2008 Can I use mysql_real_escape_string? Link to comment https://forums.phpfreaks.com/topic/101008-sql-injection-security/#findComment-516535 Share on other sites More sharing options...
thebadbad Posted April 14, 2008 Share Posted April 14, 2008 Yes, that will stop the SQL injections. Link to comment https://forums.phpfreaks.com/topic/101008-sql-injection-security/#findComment-516537 Share on other sites More sharing options...
Thomisback Posted April 14, 2008 Author Share Posted April 14, 2008 Can anyone tell why: $prefix = mysql_real_escape_string($_GET['game']); Does not work? Link to comment https://forums.phpfreaks.com/topic/101008-sql-injection-security/#findComment-516540 Share on other sites More sharing options...
Thomisback Posted April 14, 2008 Author Share Posted April 14, 2008 Never mind it works fine Link to comment https://forums.phpfreaks.com/topic/101008-sql-injection-security/#findComment-516544 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.