Revisions to How can I prevent SQL injection in PHP?

corrected spelling, fixed grammer.

Source Link

edited Nov 19, 2018 at 13:25

2.2k
3
13
31

The simple alternative to this problem could be solved by granting appropriate permissions in the database itself. For example: if you are using a mysqlMySQL database then enter into the database through terminal or the UI provided and just follow this command:

 GRANT SELECT, INSERT, DELETE ON database TO username@'localhost' IDENTIFIED BY 'password';

This will restrict the user to only get confined with the specified query's only. Remove the delete permission and so the data would never get deleted from the query fired from the phpPHP page. The second thing to do is to flush the privileges so that the mysqlMySQL refreshes the permissions and updates.

FLUSH PRIVILEGES;

more information about flush.

To see the current privileges for the user fire the following query.

select * from mysql.user where User='username';

Learn more about GRANT.

The simple alternative to this problem could be solved by granting appropriate permissions in the database itself. For example: if you are using a mysql database then enter into the database through terminal or the UI provided and just follow this command:

 GRANT SELECT, INSERT, DELETE ON database TO username@'localhost' IDENTIFIED BY 'password';

This will restrict the user to only get confined with the specified query's only. Remove the delete permission and so the data would never get deleted from the query fired from the php page. The second thing to do is to flush the privileges so that the mysql refreshes the permissions and updates.

FLUSH PRIVILEGES;

more information about flush.

To see the current privileges for the user fire the following query.

select * from mysql.user where User='username';

Learn more about GRANT.

The simple alternative to this problem could be solved by granting appropriate permissions in the database itself. For example: if you are using a MySQL database then enter into the database through terminal or the UI provided and just follow this command:

 GRANT SELECT, INSERT, DELETE ON database TO username@'localhost' IDENTIFIED BY 'password';

This will restrict the user to only get confined with the specified query's only. Remove the delete permission and so the data would never get deleted from the query fired from the PHP page. The second thing to do is to flush the privileges so that the MySQL refreshes the permissions and updates.

FLUSH PRIVILEGES;

more information about flush.

To see the current privileges for the user fire the following query.

select * from mysql.user where User='username';

Learn more about GRANT.

Grammar improvement(s)

Source Link

edited Dec 25, 2017 at 14:49

Nae

15.1k
7
58
82

The simple alternative to this problem could be solved by granting appropriate permissions in the database itself. For example: if you are using a mysql database. then enter into the database through terminal or the uiUI provided and just follow this command:

 GRANT SELECT, INSERT, DELETE ON database TO username@'localhost' IDENTIFIED BY 'password';

This will restrict the user to only get confined with the specified query's only. Remove the delete permission and so the data would never get deleted from the query fired from the php page. The second thing to do is to flush the privileges so that the mysql refreshes the permissions and updates.

FLUSH PRIVILEGES;

more information about flush.

To see the current privileges for the user fire the following query.

select * from mysql.user where User='username';

Learn more about GRANT.

The simple alternative to this problem could be solved by granting appropriate permissions in the database itself. For example: if you are using mysql database. then enter into the database through terminal or the ui provided and just follow this command:

 GRANT SELECT, INSERT, DELETE ON database TO username@'localhost' IDENTIFIED BY 'password';

This will restrict the user to only get confined with the specified query's only. Remove the delete permission and so the data would never get deleted from the query fired from the php page. The second thing to do is to flush the privileges so that the mysql refreshes the permissions and updates.

FLUSH PRIVILEGES;

more information about flush.

To see the current privileges for the user fire the following query.

select * from mysql.user where User='username';

Learn more about GRANT.

The simple alternative to this problem could be solved by granting appropriate permissions in the database itself. For example: if you are using a mysql database then enter into the database through terminal or the UI provided and just follow this command:

 GRANT SELECT, INSERT, DELETE ON database TO username@'localhost' IDENTIFIED BY 'password';

This will restrict the user to only get confined with the specified query's only. Remove the delete permission and so the data would never get deleted from the query fired from the php page. The second thing to do is to flush the privileges so that the mysql refreshes the permissions and updates.

FLUSH PRIVILEGES;

more information about flush.

To see the current privileges for the user fire the following query.

select * from mysql.user where User='username';

Learn more about GRANT.

deleted 13 characters in body

Source Link

edited Oct 24, 2017 at 10:38

Your Common Sense

157.6k
42
220
354

The simple alternative to this problem could be solved by granting appropriate permissions in the database itself. For example: if you are using mysql database. then enter into the database through terminal or the ui provided and just follow this command:

 GRANT SELECT, INSERT, DELETE ON database TO username@'localhost' IDENTIFIED BY 'password';

This will restrict the user to only get confined with the specified query's only. Remove the delete permission and so the data would never get deleted from the query fired from the php page. The second thing to do is to flush the privileges so that the mysql refreshes the permissions and updates.

FLUSH PRIVILEGES;

more information about flush flush.

To see the current privileges for the user fire the following query.

select * from mysql.user where User='username';

Learn more about GRANT GRANT.

The simple alternative to this problem could be solved by granting appropriate permissions in the database itself. For example: if you are using mysql database. then enter into the database through terminal or the ui provided and just follow this command:

 GRANT SELECT, INSERT, DELETE ON database TO username@'localhost' IDENTIFIED BY 'password';

This will restrict the user to only get confined with the specified query's only. Remove the delete permission and so the data would never get deleted from the query fired from the php page. The second thing to do is to flush the privileges so that the mysql refreshes the permissions and updates.

FLUSH PRIVILEGES;

more information about flush.

To see the current privileges for the user fire the following query.

select * from mysql.user where User='username';

Learn more about GRANT.

The simple alternative to this problem could be solved by granting appropriate permissions in the database itself. For example: if you are using mysql database. then enter into the database through terminal or the ui provided and just follow this command:

 GRANT SELECT, INSERT, DELETE ON database TO username@'localhost' IDENTIFIED BY 'password';

This will restrict the user to only get confined with the specified query's only. Remove the delete permission and so the data would never get deleted from the query fired from the php page. The second thing to do is to flush the privileges so that the mysql refreshes the permissions and updates.

FLUSH PRIVILEGES;

more information about flush.

To see the current privileges for the user fire the following query.

select * from mysql.user where User='username';

Learn more about GRANT.

URL fixed, no longer yields 404

Source Link

edited Oct 24, 2017 at 10:09

Ondrej

502
1
3
12

Loading

Post Made Community Wiki by animuson♦

occurred Jul 7, 2017 at 14:55

deleted 4 characters in body

Source Link

edited May 20, 2016 at 9:25

Willi Mentzel

29.4k
21
117
125

Loading

Notice removed Content dispute by CommunityBot

occurred Jul 24, 2014 at 10:59

Post Unlocked by CommunityBot

occurred Jul 24, 2014 at 10:59

Post Locked by Taryn

occurred Jul 23, 2014 at 10:33

Notice added Content dispute by Taryn

occurred Jul 23, 2014 at 10:33

Rollback to Revision 2

Source Link

edited Jul 23, 2014 at 9:17

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 12

Source Link

edited Jul 23, 2014 at 9:16

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 11

Source Link

edited Jul 23, 2014 at 9:16

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 10

Source Link

edited Jul 23, 2014 at 9:16

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 9

Source Link

edited Jul 23, 2014 at 9:16

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 8

Source Link

edited Jul 23, 2014 at 9:16

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 7

Source Link

edited Jul 23, 2014 at 9:16

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 6

Source Link

edited Jul 23, 2014 at 9:16

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 5

Source Link

edited Jul 23, 2014 at 9:16

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 4

Source Link

edited Jul 23, 2014 at 9:16

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 3

Source Link

edited Jul 23, 2014 at 9:15

Apurv Nerlekar

2.3k
1
21
29

Loading

Rollback to Revision 1

Source Link

edited Jul 23, 2014 at 9:15

Apurv Nerlekar

2.3k
1
21
29

Loading

Copy edited.

Source Link

edited Jul 16, 2014 at 2:36

Peter Mortensen

31.3k
22
109
132

Loading

minor format changes

Source Link

edit approved Feb 18, 2013 at 6:31

Tony Stark

8.1k
8
45
63

Loading

Source Link

created Oct 25, 2012 at 8:07

Apurv Nerlekar

2.3k
1
21
29

Loading

Collectives™ on Stack Overflow

Return to Answer