How to prevent SQL injection?
Important is that any parameter in a query needs to be parameterized. It doesn’t matter is your query is select, insert, update or delete kind of query, since every query can be used for injection. Let’s say that you want to have basic SELECT query, like: SELECT `column1` FROM `table1` WHERE `column2` = 11; You…