Avoid SQL Injection in PHP file to a Firebird Database
I have the following code in a PHP which works, but I suspect it susceptible to SQL injection. Am I right? The query is to a Interbase (firebird) 2.1 database, not MySQL. $employeename = 'ALLSOPPC'; $query = "SELECT DATEWORKED, ORDERTYPE,…