You are reviewing a colleague's PHP code and notice they are using raw SQL statements with user input directly in the query. What potential issue does this introduce?
- SQL Injection vulnerabilities
- Improved query performance
- Better code readability
- Enhanced database compatibility
Using raw SQL statements with user input directly in the query introduces SQL Injection vulnerabilities, a major security risk.
Loading...
Related Quiz
- The continue statement in PHP is used to ______ the rest of the current loop iteration and continue with the next one.
- What is a common use case for the $_SERVER superglobal in PHP?
- To ensure an uploaded file is not malicious, one should validate the file's ________ before saving it.
- What are some commonly used network functions available in PHP?
- In a database transaction, what does the term "atomicity" refer to?