so-sql-injections
so-sql-injections copied to clipboard
laurent22
SQL injection vulnerabilities in Stack Overflow PHP questions
I have not had the chance to look into the code, but how hard would it be to add other languages. Like Perl, python, java, javascript?
i know mysql_real_escape_string is not safe But the mysqli safe ? (improved version ). Give me one example that will get around this ? `$id = mysqli_real_escape_string($con,htmlentities(trim($id)));` `"SELECT * from...
As per #3 it's acknowledged this script is, for performance reasons, actually finding whether questions are using prepared statements, not whether there is SQL injection. It seems prudent to change...
seems this script thought that https://stackoverflow.com/questions/40964119/showing-query-mysqli-using-select-tag-html-input was vulnerable to SQL injections.. it isn't. was quoted as: 04/12/2016 22:52:02: $stmt = $con->prepare('SELECT titlu, linknews, autorID, data, count FROM stiinta WHERE autorID...
