Prevent SQLINJECTION using PDO with prepare statements in php
iSpeech
Welcome to this tutorial. In this video we will go over the basics of PDO (PHP Data Objects) which is a secure and consistent way to connect to a database via PHP. It is an alternative to mysqli. We will go over connection, PDO::Query and CRUD operations through prepared statements. Let's talk about how to prevent SQLINJECTION using PDO and prepare statements in php. In this tutorial we are going to talk about PDO(PHP DATA OBJECT) and prepare statement. And by using PDO and Prepare statemnets we can prevent sqlinjection in our php aplication or websites.
SQLINJECTION is a very old and common hacking technique. But Hackers can destroy website or
web application database with this simple method.
hope that you will enjoy the video. lets see How to prevent SQL Injection attacks in PHP using PDO. Use the PDO quote function or prepared statements to avoid the problem.
please do not try this in any website.
php.net link : https://www.php.net/manual/en/book.pdo.php
w3school link: https://www.w3schools.com/php/php_mysql_prepared_statements.asp
2019-09-11 15:05:53
source
Gloss