Hey this isn't working. a % sign keeps coming in between

lolol @69aznboi exactly.. knowing how to backdoor can prevent you from being backdoored!!!!!!

I thought you guys wanted to promote security, not teach people how to hack.

@ToastyToast71 WOW... how do you think one goes about testing the integrity of a site's or server's or computer's security? Its not like getting a heavy lock for your door then your burglar proof... even then you have windows, backdoors, and chimneys to worry about... if you get what i mean. Computers and networks will never be secure, security is reliant on penetration testing. Look up white hat hackers, Rtard

what if the error says

Warning: pg_query() [function.pg-query]: Query failed: ERROR: syntax error at or near ""' or '1'='1""

?? can anyone help?

@neozeonsolid just means your injection didn't work... you got a response so maybe you hit a soft spot... real hacking is about trial and error, you might be on the right track

Wow this is a really good tutorial. Very HQ very good job.

One doubt:  If we do trim(" ' ", $param) in PHP can SQL Injection be avoided completely ??

Since i thought closing of quote made all the difference to the query!!

Thanks for uploading such content.. Keep up the good work !!!

id use xampp (apache,mysql,filezilla) in one console