O'Reilly logo

PHP Solutions: Dynamic Web Design Made Easy by David Powers

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

13 MANAGING CONTENT

What this chapter covers:

  • Preventing SQL injection attacks
  • Inserting, updating, and deleting database records
  • Using prepared statements with MySQLI and PDO

Although you can use phpMyAdmin for a lot of database administration, there are some things for which it's out of the question. The last thing you want is to give outsiders the freedom to poke around your database, adding and deleting vital records at will. You need to build your own forms and create customized content management systems.

At the heart of every content management system lie just four SQL commands: SELECT, INSERT, UPDATE, and DELETE. All four commands either rely on or can accept user input. So you need to make sure that any input doesn't expose your data ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required