SQL Injection

SQL injection is a nasty thing.An SQL injection is a security exploit that allows a hacker to dive into your database using a vulnerability in your code. Furrah Mavituna has a very nifty SQL injection cheat sheet that has a section on vulnerabilities with PHP and MYSQL. If you can avoid the practices cheat sheet identifies, your code will be much less prone to scripting attacks.