mardi 14 avril 2015

Prepaired Statements in PHP to prevent SQL injection


Vote count:

-1




I need to fix the following vulnerable code with prepaired statements to prevent SQL injection. I have used prepaired statements in Java before but never in PHP. does the syntax change much for different languages?? Any help is much appreciated...



    <?php include "config.php"; ?>
    <!DOCTYPE html">  
     <head>  
     <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />  
     <title>Insecure</title>
    <link rel="stylesheet" href="style.css" type="text/css" />
     </head>  
     <body>  
     <div id="main">
     <?php
    if(!empty($_SESSION['LoggedIn']) && !empty($_SESSION['Username']))
     {
          ?>

        <h1>Member Area</h1>
         <p>Thanks for logging in! You are <b><?=$_SESSION['Username']?><b> and your email address is <b><?=$_SESSION['EmailAddress']?></b>.</p>
     <ul>
        <li><a href="logout.php">Logout.</a></li>
    </ul>

    <?php
    }
      elseif(!empty($_POST['username']) && !empty($_POST['password']))
    {
     $username = $_POST['username'];
    $password = md5($_POST['password']);

     $checklogin = mysql_query("SELECT * FROM users WHERE Username = '".$username."' AND Password = '".$password."'");

    if(mysql_num_rows($checklogin))
    {
         $row = mysql_fetch_array($checklogin);
        $email = $row['EmailAddress'];

        $_SESSION['Username'] = $username;
        $_SESSION['EmailAddress'] = $email;
        $_SESSION['LoggedIn'] = 1;

         echo "<h1>Success</h1>";
        echo "<p>We are now redirecting you to the member area.</p>";
        echo "<meta http-equiv='refresh' content='2;index.php' />";
    }
    else
    {
         echo "<h1>Error</h1>";
        echo "<p>Sorry, your account could not be found. Please <a href=\"index.php\">click here to try again</a>.</p>";
        }
        }
    else
    {
        ?>

       <h1>Member Login</h1>

       <p>Thanks for visiting! Please either login below, or <a href="register.php">click here to register</a>.</p>

    <form method="post" action="index.php" name="loginform" id="loginform">
    <fieldset>
        <label for="username">Username:</label><input type="text" name="username" id="username" /><br />
        <label for="password">Password:</label><input type="password" name="password" id="password" /><br />
        <input type="submit" name="login" id="login" value="Login" />
    </fieldset>
    </form>

   <?php
}
?>
</div>
</body>
</html>


asked 39 secs ago

CB-EIRE

1






Prepaired Statements in PHP to prevent SQL injection
Publié par à
Libellés : , ,

Aucun commentaire:

Enregistrer un commentaire

Inscription à : Publier les commentaires (Atom)