Signs that a SQL statement is dangerous

Posted by Matt on Stack Overflow See other posts from Stack Overflow or by Matt
Published on 2010-05-07T22:34:12Z Indexed on 2010/05/07 22:38 UTC
Read the original article Hit count: 131

Filed under:
|
|

Hi,

I want to develop a function in PHP that checks how dangerous a SQL statement is. When i say dangerous i mean, certain symbols, characters or strings that are used to get data from a database that the user shouldnt see.

For example:

SELECT * FROM users WHERE userId = '1'

can be injected in several ways. Although i clean the params, i also want to monitor how safe the query is to run.

Thanks in advance

© Stack Overflow or respective owner

Related posts about php

Related posts about security