Join Now / Sign In
Ask a Question
A few basic steps can help prevent a lot of issues:
Do code reviews so that there everything changed is double checked and looked at with a fresh set of eyes.
Don't allow escape characters.
Use parameterized statements so that data is filtered prior to being sent to the database.