Multiple Statements with MySQL and JDBC

databases Cameron Childress pointed out the allowMultiQueries setting in the MySQL JDBC driver on the CFGURU list. It is set to false by default to protect you from SQL Injection attacks.

This entry was:

Prepared Statements in PHP and MySQL

databases I'm working on a web security presentation, and I was curious to know if PHP supported prepared statements. It looks like as of PHP 5 they do support it with the new mysqli object (mysqli replaces the mysql class with support for mysql 4.

This entry was:


did you hack my cf?