Since I’ve become Zend Certified Engineer (PHP 5.3) on 15th July, 2013, I’ve been getting emails from a lot of people asking me about the exam experience and tips to pass the exam. So instead of emailing everyone separately, I’ve decided to just post a blog about how I prepared for the exam.
I’ve seen a lot of custom coded PHP applications, which have done it all functionality wise, but when it came to validating and securing the incoming data from the input fields before saving them into the database, most of them fell short.
A lot of developers I know don’t know what SQL or XSS Injection is, and those who do know about the terms don’t know how the injection happens and how to protect your website against them. This post is about how you can secure both types of injections using just one method.
If you have been doing web development for a while, then you must have encountered malicious codes in your or your client’s website. I’ve seen many novice programmers removing the malicious code from the website and then immediately changing the FTP and web hosting passwords, thinking that the website won’t get hacked again, only to find out in a few days that it has been hacked again. Read More