<<< Previous question <<< Question ID#0166.md >>> Next question >>>

You run the following PHP script:

$name = mysqli_real_escape_string($_POST["name"]); 
$password = mysqli_real_escape_string($_POST["password"]);

What is the use of the mysqli_real_escape_string() function in the above script. Each correct answer represents a complete solution. Choose all that apply.

A) It can be used as a countermeasure against a SQL injection attack.
B) It escapes all special characters from strings $_POST["name"] and $_POST["password"].
C) It escapes all special characters from strings $_POST["name"] and $_POST["password"] except ' and ".
D) It can be used to mitigate a cross-site scripting attack.

Answer

Answer: A, B

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

0166.md

0166.md

<<< Previous question <<< Question ID#0166.md >>> Next question >>>

Files

0166.md

Latest commit

History

0166.md

File metadata and controls

<<< Previous question <<< Question ID#0166.md >>> Next question >>>