Comments on: CopTech … (Ajit Hatti)

By: nikhil

nikhil — Sun, 29 Nov 2009 10:26:39 +0000

In php declaring the data type of a variable correctly can prevent sql injection even if get_magic_quotes_gpc is enabled there are chances of sql injection and you must know that web application firewalls can also be bypassed using http parameter pollution

By: neo

neo — Tue, 10 Nov 2009 07:35:54 +0000

Well arpit you didnt give information in which platform u developing site but here goes.
How to avoid SQL injection in ASP.net -
http://msdn.microsoft.com/en-us/library/ms998271.aspx

Avoid SQL Injection in PHP
http://www.tech-evangelist.com/2007/11/05/preventing-sql-injection-attack/
http://www.askbee.net/articles/php/SQL_Injection/sql_injection.html

By: arpit pandey

arpit pandey — Tue, 13 Oct 2009 03:55:56 +0000

I am designing a website and i want to know how to to overcome from sql injection problem