Are there any differences between MSSQL and MySQL when it comes to preventing SQL injection?
Posted
by Derek Adair
on Stack Overflow
See other posts from Stack Overflow
or by Derek Adair
Published on 2010-04-09T15:37:08Z
Indexed on
2010/04/09
15:43 UTC
Read the original article
Hit count: 317
I am used to developing in PHP/MySQL and have no experience developing with MSSQL. I've skimmed over the PHP MSSQL documentation and it looks similar to MySQLi in some of the methods I read about.
For example, with MySQL I utilize the function mysql_real_excape_string(). Is there a similar function with PHP/MSSQL?
What steps do I need to take in order to protect against SQL injection with MSSQL?
What are the differences between MSSQL and MySQL pertaining to SQL injection prevention?
© Stack Overflow or respective owner