Archives for the Date July 23rd, 2007

Reflected SQL injection

I’ve been developing a system for a while now and it’s currently in the testing stage, I noticed that a SQL injection vulnerability had crept in. I was quite surprised because my filtering methods are generally quite good and I’ve not seen any SQL errors in the logs for quite some time. Luckly the site […]

PHP Mysql tips

Continuing from my earlier post on PHP performance, I thought I’d share a few Mysql tips that I’ve learnt over the years. Hope it helps someone and please leave a comment with your own tips or provide any corrections to the ones mentioned. Word searching 1. SELECT * FROM table WHERE MATCH (`field`) AGAINST (‘Keyword’) […]