PHP Filters : mmmm….security! Definitely worth a look-see for PHP programmers. OWASP comes highly recommended.
PHP Filters : mmmm….security! Definitely worth a look-see for PHP programmers. OWASP comes highly recommended.
Obviously Powered by WordPress. © 2003-2013
sanitize_sql_string is somewhat over-paranoid. unless I am mistaking, it basically removes any occurrence of ; in sql strings. not exactly what you want in a publishing tool.
Maybe for a blogging tool, but for any app of finance, it is just being safe.
even for a finance app, really. i’ve worked with firms in the finance sector in the past. in practice, they’re hardly less insecure as another firm. and you basically cannot use a security measure such as this: it will likely break a market data, order routing and clearing application who relies on it.