preventing mysql injection attacks

• From: "Littlefield, Tyler" <tyler@xxxxxxxxxxxxx>
• To: programmingblind@xxxxxxxxxxxxx
• Date: Mon, 25 Apr 2011 12:27:49 -0600

Hello all:

I was working on a basic php app, and was curious of something. I know a little about mysql injection attacks, but I don't know enough to be really useful. I was curious if this would be enough to prevent? I sanitize all input through this before I use it in a query:

function CleanupInput($input)
{
    return  mysql_escape_string(addslashes($input));
}

--

Thanks,
Ty

__________

View the list's information and change your settings at //www.freelists.org/list/programmingblind

• Follow-Ups:
  • Re: preventing mysql injection attacks
    • From: Storm Dragon
  • Re: preventing mysql injection attacks
    • From: black ares

Other related posts:

• » preventing mysql injection attacks - Littlefield, Tyler
• » Re: preventing mysql injection attacks- Storm Dragon
• » Re: preventing mysql injection attacks- Littlefield, Tyler
• » Re: preventing mysql injection attacks- black ares
• » RE: preventing mysql injection attacks- Sina Bahram

1. Home
2. programmingblind
3. Archive
4. 04-2011

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---