TalkPHP - View Single Post

ryanmr · 06-25-2008, 07:17 PM

I'm not sure if sprintf covers this but I normally use is_numeric for ids and some regex for usernames.
In anycase, you can look at this cheat sheet: 0x000000 # The Hacker Webzine - SQL Injection Cheat Sheet, it shows you a lot of different ideas.

06-25-2008, 07:17 PM	#3 (permalink)
ryanmr The Contributor Join Date: Jun 2008 Location: Twin Cities, Minnesota, USA Posts: 27 Thanks: 2	I'm not sure if sprintf covers this but I normally use is_numeric for ids and some regex for usernames. In anycase, you can look at this cheat sheet: 0x000000 # The Hacker Webzine - SQL Injection Cheat Sheet, it shows you a lot of different ideas.