SQL injection on login system by Adobe?

Question

Hello everybody!I recently bought a wonderful book "Adobe Dreamweaver CS5 with PHP - Training from the source" by Daivid Powers.In the book is described how you can create a login system.What I would like to ask is: Have the dreamweaver server behaviors any kind of protection against SQL injection?Unfortunately I do not know PHP in order to recognize the code generated by server behaviors and be able to answer this question by myself..I just want to know how safe is to publish a website based on the dreamweaver server behaviors..Thank you in advance!

Günter_Schenk · Answer

Any form values and inbound URL parameters will be sanitized (via the function GetSQLValueString) based on several criteria:

a) generally applied sanitizing functions: stripslashes, mysql_real_escape_string

b) in case of a numeric value (integer, double) the function GetSQLValueString will additionally apply the PHP function intval respectively doubleval

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded