<div>
rather than ad-hoc queries, I would suggest you to go for stored procedure, it is much much secure and having good security features.
</div>


rather than ad-hoc queries, I would suggest you to go for stored procedure, it is much much secure and having good security features.

<div>
Try this: <a href="http://www.phpclasses.org/browse/package/2843.html" rel="ugc">www.phpclasses.org/browse/package/2843.html</a>
</div>


Try this: www.phpclasses.org/browse/package/2843.html [http://www.phpclasses.org/browse/package/2843.html]

<div>
I am going to check them out.
</div>


<div>
I Am using PHPIDS , have you ever used it ?
</div>


I Am using PHPIDS , have you ever used it ?

<div>
It was the best solution posted. Althought i had to upgrade to php 5 so i could get better choices.
</div>


It was the best solution posted. Althought i had to upgrade to php 5 so i could get better choices.

<div>
<div class="content wysiwyg-content">
Hello,<br />
I have a website that runs MSSQL 2000 + Php 4 , and now i want more security on queries and user input .<br />
I´ve heard using parametrized queries is a solution, but i dont know where to start.<br />
<br />
Can you show me the path ? I want more secure enviroment for my users and for myself.
</div>
</div>


Hello,
I have a website that runs MSSQL 2000 + Php 4 , and now i want more security on queries and user input .
I´ve heard using parametrized queries is a solution, but i dont know where to start.

Can you show me the path ? I want more secure enviroment for my users and for myself.

ADODB ( Abstraction Layer Using MSSQL 2000 and PHP 4 )

PHP is a widely-used server-side scripting language especially suited for web development, powering tens of millions of sites from Facebook to personal WordPress blogs. PHP is often paired with the MySQL relational database, but includes support for most other mainstream databases. By utilizing different Server APIs, PHP can work on many different web servers as a server-side scripting language.

Microsoft SQL Server is a suite of relational database management system (RDBMS) products providing multi-user database access functionality.SQL Server is available in multiple versions, typically identified by release year, and versions are subdivided into editions to distinguish between product functionality. Component services include integration (SSIS), reporting (SSRS), analysis (SSAS), data quality, master data, T-SQL and performance tuning.