News Feed
Sections




News Archive
Looking for more information on how to do PHP the right way? Check out PHP: The Right Way

DevShed:
PHP Programs to Prevent MySQL Injection or HTML Form Abuse
January 07, 2009 @ 11:13:41

On DevShed today there's a new tutorial looking at a method for protecting your application (your MySQL/PHP application) forms from malicious attacks like SQL injections.

It has been known for a while that if a form is unsecured, malicious code in the form of MySQL injection will be initiated to attack the site. HTML forms such as drop down menus, search box, check boxes are all susceptible entry points of this type of abuse. This article will explain what happens in this kind of attack, and how to prevent it.

They compare unvalidated input with a validated method that uses some simple checks to ensure that the given content is numeric and regular expressions to match text.

0 comments voice your opinion now!
tutorial form abuse security regular expression validate


blog comments powered by Disqus

Similar Posts

DevShed: Setting Up a Web-Based File Manager: bfExplorer

Robert Basic's Blog: Debugging two PHP projects in Netbeans at the same time

MelonFire Community: Caching Web Sites With PEAR Cache

Ken Guest's Blog: Validation in Depth - a retort to using just regular expressions

PHP Security Blog: phpBB mass hack in preparation?


Community Events





Don't see your event here?
Let us know!


podcast language interview library version release security voicesoftheelephpant package mvc laravel opinion tool series update framework symfony community composer introduction

All content copyright, 2014 PHPDeveloper.org :: info@phpdeveloper.org - Powered by the Solar PHP Framework