SQL Injection Part 3– How to Prevent

This is more interesting than hacking. There are several techniques, but again preventing in the sense making  a harder environment for the hacker. And we what we try is to make the environment harder and what the hacker tries is to find a path in the environment. First you can clean the values like this. … Continue reading SQL Injection Part 3– How to Prevent

Advertisements

SQL Injection Part 2– How to Inject

We have created a proper login in Part 1. Proper login in the sense it was syntactically OK but not an efficient one. Let’s how a hacker can get into a system. He inserts the username as nobody or 1=1 password  = idontknow or 1=1 Now the $sql will get the following value SELECT * … Continue reading SQL Injection Part 2– How to Inject