Signs that a SQL statement is dangerous
Posted
by Matt
on Stack Overflow
See other posts from Stack Overflow
or by Matt
Published on 2010-05-07T22:34:12Z
Indexed on
2010/05/07
22:38 UTC
Read the original article
Hit count: 131
Hi,
I want to develop a function in PHP that checks how dangerous a SQL statement is. When i say dangerous i mean, certain symbols, characters or strings that are used to get data from a database that the user shouldnt see.
For example:
SELECT * FROM users WHERE userId = '1'
can be injected in several ways. Although i clean the params, i also want to monitor how safe the query is to run.
Thanks in advance
© Stack Overflow or respective owner