Ask the Community
Ask any professional question and get answers from other specialists.
What if black hat hackers call them self we are !what well you do as self wareed.
Use prepared statements and parameterized queries (PDO & Mysqli). PDO : http://php.net/manual/en/book.pdo.php MYsqli : http://php.net/manual/en/book.mysqli.php You ... See More
in PDO and MySqli you can bind the parameters and then excute the query another solution you can escape the parameters using "mysql_real_escape_string" its all ... See More
Use parameterized queries
use a php function name 'mysql_real_escape_string()' but this function will be deprecated in5.5.0 version of php. but you can use MySQLi or PDO_MySQL for preven ... See More