Simple way to keep away some SQL injection engines October 28, 2011 at 3:21 pm
add in to your .htaccess lines:
RewriteEngine on
RewriteCond %{QUERY_STRING} ^.*(md5|benchmark|union|select|insert|cast|set|declare|drop|update).* [NC]
RewriteRule ^(.*)$ – [F,L]
Leave a Reply
You must be logged in to post a comment.