Learn about Security for code and servers. Learn how to secure your site and your code. Learn about hacking prevention, finding and identifying exploits, and recognising vulnerabilities. Plus, Weekly Security tips and Tutorials.
Post questions related to security, analyse and learn about vulnerabilities and exploits within code to protect yourself against hackers.
I am making a basic CMS for my website, however I don't have any experience of SQL injection prevention methods. I am hoping that someone can help me by posting/pointing me towards a bit of php to stop potential attacks.
I am after 2 different versions, both need to be SQL injection proof but allow things such as " ' ; to be stored in the database while stripping out newlines etc.
One for trusted members will allow html tags etc to be used.
The second for non-trusted members, using tags such as bbcode to allow some html-like funtionality.