logoalt Hacker News

vultourtoday at 9:45 AM1 replyview on HN

The link talks about more than just SQL injection. SQL injection can be fully mitigated using prepared statements. They were the solution 15 years ago when I was getting started with PHP in high school and it's still applicable today. The fact that SQL injection remains an issue speaks volumes about the general quality of software engineers.


Replies

LargeWutoday at 2:25 PM

SQL Injection isn't even a problem of SQL, it's a problem of the applications those databases are connected to.