If data being inserted or updated violates a check constraint the database engine will not allow the INSERT or UPDATE operation to occur.
A check constraint is a rule that identifies acceptable column values for data in a row within a SQL Server table. Domain integrity defines the valid values for columns within a database table.
So, I actually put the page_ID as ‘ OR 1’ as we talked about earlier and you forgot to sanitize the page_ID.
T(I know you wouldn’t really forget to do that J) Since we used our mysql_real_escape_string() function, we prevented the injection.
It’s when the bad guys inject data into your site, which will later be sent to the client-side, to maliciously get data from users, modify your site in a way to change data, or delete data.
Cross-Site injection is huge security vulnerability. So, how can you help to prevent this from happening?
Over the last two posts, you’ve learned how to protect your PHP site using validation, sanitization, My SQL injection prevention, and some Cross-Site injection skills. There’s lots of information online to help protect your site, and the more you know, the safer you are.