Simon Willison’s Weblog

PHP immune to SQL injection attacks

17th August 2002

An interesting thread on SitePoint about SQL injection attacks. One of the points brought up is that PHP is by default virtually immune to injection attacks thanks to magic quotes (discussed here yesterday).

Posted 17th August 2002 at 2:47 pm · Follow me on Mastodon, Bluesky, Twitter or subscribe to my newsletter

More recent articles

Trying out llama.cpp's new vision support - 10th May 2025
Saying "hi" to Microsoft's Phi-4-reasoning - 6th May 2025
Feed a video to a vision LLM as a sequence of JPEG frames on the CLI (also LLM 0.25) - 5th May 2025

This is PHP immune to SQL injection attacks by Simon Willison, posted on 17th August 2002.

Next: Working on my blog

Previous: Tips for working from home

Previously hosted at http://simon.incutio.com/archive/2002/08/17/phpSqlInjectionAttacks