In this article, we are going to look into four basic examples of Parameter Binding in PHP using both MySQLi and PDO. If Parameter Binding does not tell you anything, you may want to check out my previous article where I explained how Parameter Binding can be used for deterring most SQL Injection attacks. Let’s get started!
Continue reading “Parameter Binding in PHP – Examples and Discussion”Prevent SQL Injection in PHP | Web Security
In this article, I am going to explain how you can prevent SQL Injection in your PHP website by making it immune to most SQL Injection attacks. We will begin with a simple example followed by a few easy to understand solutions. Read on!
Continue reading “Prevent SQL Injection in PHP | Web Security”SQL Injection & Prevention | Web Security
SQL stands for Structured Query Language. To understand what SQL Injection is, it is important to understand how information on the web is stored. A database is used to store data such that it is easy to access and manage data efficiently. There are two kinds of databases – Relational and Non-Relational. Relational database stores data in the form of rows and columns while non-relational database store data mainly in four fashions – Key-value, Graph, Column, and Document.
Continue reading “SQL Injection & Prevention | Web Security”XSS Attacks (Cross-Site Scripting) | Web Security
XSS, an acronym derived from Cross ‘X’ Site Scripting, refers to the injection of malicious scripts into a legitimate website or web application. It is similar to other web attacks such as SQL injection, however, it is more devastating since an XSS attack does not target the application concerned rather it puts the users of the application at risk.
Continue reading “XSS Attacks (Cross-Site Scripting) | Web Security”