pulkit123 Posted April 15, 2009 Share Posted April 15, 2009 Hi, I m pulkit. i want to do sql injection in my php application. i have use PDO in mysql and on each page i m using $_POST method. i know PDO is the good way to prevent sql injection but i got that sql injection is also possible in PDO. Please if any one know hopw itis possible than please tell me. Link to comment https://forums.phpfreaks.com/topic/154181-sqlinjection/ Share on other sites More sharing options...
Mchl Posted April 15, 2009 Share Posted April 15, 2009 If you use prepared statements you're protected against majority of SQL injection attacks (to be honest, I can't think of any injection that would be possible with properly used prepared statement). Here's good article you might find informative http://www.webappsec.org/projects/articles/091007.shtml Link to comment https://forums.phpfreaks.com/topic/154181-sqlinjection/#findComment-810519 Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.