|I am fortunate to be working with a team full of |
really talented PHP Coders on a fairly large project
and they have passed on a lot of new information and
shared some great tricks with me.
Use mysql_real_escape_string to escape 'evil characters' and prevent SQL Injection Attacks:
Or you can use ADOdb's Quote Function:
Or one of the classes on this site:
For extra safety on user data in a session encrypt and Decrypt it:
We have had good luck with the PHPFreaksCrypto.class
ML et al, PHPClasses.org continues to be a valuable resource! Keep up the great work.