Simple way to keep away some SQL injection engines

add in to your .htaccess lines:


RewriteEngine on

RewriteCond %{QUERY_STRING} ^.*(md5|benchmark|union|select|insert|cast|set|declare|drop|update).* [NC]
RewriteRule ^(.*)$ – [F,L]

Leave a Reply