+- Support Forums (https://www.supportforums.net)
+-- Forum: Categories (https://www.supportforums.net/forumdisplay.php?fid=87)
+--- Forum: Coding Support Forums (https://www.supportforums.net/forumdisplay.php?fid=18)
+---- Forum: Database Programming (https://www.supportforums.net/forumdisplay.php?fid=28)
+---- Thread: Why not use this to help prevent SQL injection? (/showthread.php?tid=18382)
Why not use this to help prevent SQL injection? - ★Cooldude★ - 04-29-2011
Why don't we just add "--" to the end of our queries to prevent basic SQL injection?
RE: Why not use this to help prevent SQL injection? - Solidus - 04-29-2011
Who's code?
RE: Why not use this to help prevent SQL injection? - eax - 04-30-2011
When the magic_quotes_gpc variable is off, it prevents some SQL attacks also.
RE: Why not use this to help prevent SQL injection? - ★Cooldude★ - 04-30-2011
(04-29-2011, 02:19 PM)Solidus Wrote: Who's code?
No one in particular. If you add -- to then end of your query, and injection attempts like " 'OR 1=1" will just be read as a comment.
RE: Why not use this to help prevent SQL injection? - Solidus - 04-30-2011
It's the most basic of all injections. I don't think you'll find a script that is vulnerable to that.
RE: Why not use this to help prevent SQL injection? - iCrack - 05-05-2011
This section is so dead... Well I think it could work in some cases...
RE: Why not use this to help prevent SQL injection? - harris21 - 05-05-2011
(05-05-2011, 11:18 AM)iCrack Wrote: This section is so dead... Well I think it could work in some cases...
I agree. It's a good section though. I don't know why it's so dead.
RE: Why not use this to help prevent SQL injection? - eax - 05-06-2011
(05-05-2011, 06:22 PM)harris21 Wrote: I agree. It's a good section though. I don't know why it's so dead.
All the coding sections are dead. I don't know why. Does no one program on here?
RE: Why not use this to help prevent SQL injection? - harris21 - 05-06-2011
(05-06-2011, 07:33 AM)eax Wrote: All the coding sections are dead. I don't know why. Does no one program on here?
Well, i do programm a lot lately. We just need some more programmers here
RE: Why not use this to help prevent SQL injection? - ★Cooldude★ - 05-06-2011
SupportForums doesn't have many posts a day at the moment.