codeigniter admin login hacked although I have used all security matters

Posted by artmania on Stack Overflow See other posts from Stack Overflow or by artmania
Published on 2010-05-04T06:25:23Z Indexed on 2010/05/04 6:28 UTC
Read the original article Hit count: 276

hi friends,

how come have the code before hacked with SQL Injection :(

$query = $this->db->query("SELECT * FROM users WHERE username = ? AND password = ?", array(mysql_real_escape_string($this->input->post('username')), mysql_real_escape_string(MD5($this->input->post('password')))));  

appreciate helps!!

© Stack Overflow or respective owner

Related posts about codeigniter

Related posts about sql-injection