提交的數據我做了如下措施來保護subbmited數據免受SQL攻擊SQL防止SQL注入
$myusername = stripslashes($myusername);
$myusername = mysql_real_escape_string($myusername);
$mypassword = stripslashes($mypassword);
$mypassword = mysql_real_escape_string($mypassword);
$confirm_password = stripslashes($confirm_password);
$confirm_password = mysql_real_escape_string($confirm_password);
$fullname = stripslashes($fullname);
$fullname = mysql_real_escape_string($fullname);
是否有這樣做的更簡單的方法?這是一份註冊表格,我有許多領域需要保護。
查看準備好的語句(例如[PDO](http://php.net/manual/en/book.pdo.php)或['mysqli_prepare'](http://www.php.net/manual) /en/mysqli.prepare.php))。 – 2012-04-10 18:09:17