用于SQL注入测试的sprintf [英] sprintf for SQL injection testing
本文介绍了用于SQL注入测试的sprintf的处理方法,对大家解决问题具有一定的参考价值,需要的朋友们下面随着小编来一起学习吧!
问题描述
大家好 -
我正在寻找描述如何防止SQL注入的网页
with PHP。所有这些都提到了mysql_real_escape_string。但是,我在过去的某个时候回想起sprintf。
mysql_real_escape_string是否足以防止注射,或者
应该用sprintf检查$ _POST或$ _GET数据吗?
解决方案
_POST或
_GET数据也用sprintf检查?
la ***** @ gmail.com 写道:
大家好 -
我正在查看描述如何防止SQL注入的网页
PHP。所有这些都提到了mysql_real_escape_string。但是,我在过去的某个时候回想起sprintf。
mysql_real_escape_string是否足以防止注射,或者
应
Hello all -
I''m looking at web pages describeing how to prevent SQL injections
with PHP. All of them metion mysql_real_escape_string. However, I
recall mention of sprintf at some time in the past.
Is mysql_real_escape_string sufficient to prevent injections, or
should $_POST or $_GET data also be checked with sprintf ?解决方案_POST or
_GET data also be checked with sprintf ?
la*****@gmail.com wrote:Hello all -
I''m looking at web pages describeing how to prevent SQL injections
with PHP. All of them metion mysql_real_escape_string. However, I
recall mention of sprintf at some time in the past.
Is mysql_real_escape_string sufficient to prevent injections, or
should
这篇关于用于SQL注入测试的sprintf的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
查看全文