Web development » Database Host http://sourcecodemoney.com Use source code for money Thu, 12 Aug 2010 10:54:18 +0000 http://wordpress.org/?v=2.8.4 en hourly 1 Prevent sql injection code http://sourcecodemoney.com/prevent-sql-injection-code/php-code/ http://sourcecodemoney.com/prevent-sql-injection-code/php-code/#comments Thu, 23 Jul 2009 15:35:33 +0000 http://sourcecodemoney.com/?p=84 SQL Injection is a technique where an attacker creates or alters existing SQL commands to tamper data, override valuable ones, or even to execute dangerous system level commands on the database host. To avoid this, always check your input data [...]]]>

SQL Injection is a technique where an attacker creates or alters existing SQL commands to tamper data, override valuable ones, or even to execute dangerous system level commands on the database host. To avoid this, always check your input data using the function below:

function checkValid($str)
{
$valid_string = “[\*\^\'\;]“;
if(ereg($valid_string,$str))
{
echo(”<script>alert(’Invalid characted’);</script>”);
die();
}
else
{
return $str;
}
}
]]> http://sourcecodemoney.com/prevent-sql-injection-code/php-code/feed/ 0