September 2017
Intermediate to advanced
244 pages
6h 44m
English
Right now in our code, although we are using PDO prepare and bindValue() methods, it will just save it from SQL injection. However, we are not validating all fields in the case of insert and update. We need to validate that the title should be of a specific limit, the status should be either draft or published, and the user_id should be always one of IDs in the users table.
Read now
Unlock full access