SQL Injection When Using MySQLi Prepared Statements

Posted by Sev on Stack Overflow See other posts from Stack Overflow or by Sev
Published on 2010-06-02T01:42:18Z Indexed on 2010/06/02 1:43 UTC
Read the original article Hit count: 278

If all that is used to do any and all database queries is MySQLi prepared statements with bound parameters in a web-app, is sql injection still possible?

Notes

  • I know that there are other forms of attack other than sql-injection, but my question is specific to sql-injection attacks on that particular web application only.

© Stack Overflow or respective owner

Related posts about mysql

Related posts about mysqli