What potential security vulnerability is present in the provided PHP code, and how can it be mitigated?

The potential security vulnerability in the provided PHP code is the use of user input directly in a SQL query without proper sanitization, which can lead to SQL injection attacks. To mitigate this vulnerability, you should use prepared statements with parameterized queries to safely handle user input.

// Original vulnerable code
$mysqli = new mysqli(&quot;localhost&quot;, &quot;username&quot;, &quot;password&quot;, &quot;database&quot;);
$username = $_POST[&#039;username&#039;];
$password = $_POST[&#039;password&#039;];

$query = &quot;SELECT * FROM users WHERE username=&#039;$username&#039; AND password=&#039;$password&#039;&quot;;
$result = $mysqli-&gt;query($query);

// Mitigated code using prepared statements
$mysqli = new mysqli(&quot;localhost&quot;, &quot;username&quot;, &quot;password&quot;, &quot;database&quot;);
$username = $_POST[&#039;username&#039;];
$password = $_POST[&#039;password&#039;];

$query = &quot;SELECT * FROM users WHERE username=? AND password=?&quot;;
$stmt = $mysqli-&gt;prepare($query);
$stmt-&gt;bind_param(&quot;ss&quot;, $username, $password);
$stmt-&gt;execute();
$result = $stmt-&gt;get_result();

Keywords

SQL injection prepared statements htmlspecialchars cross-site scripting input validation

What potential security vulnerability is present in the provided PHP code, and how can it be mitigated?

Keywords

Related Questions