php oracle sql injection

[danarj90]

Hi..
I had written this code to prevent sql injection in the login form (i use oracle 10g)

$query = "SELECT USER_NAME, PASSWORD, GROUP_ID,user_id ,f_login_status
FROM ADSL_USERS
WHERE active <> 0
AND USER_NAME =:user AND PASSWORD = :pass ";
$stid = oci_parse($conn, $query);
oci_bind_by_name($stid, ':user', $_POST['username']);
oci_bind_by_name($stid, ':pass', md5($_POST['password']));
oci_execute($stid);
$row = oci_fetch_array($stid, OCI_RETURN_NULLS);

it deos not return any value

i hade this before but it was exposed to sql injection

$query = "SELECT USER_NAME, PASSWORD, GROUP_ID,user_id ,f_login_status
FROM ADSL_USERS
WHERE active <> 0
AND USER_NAME ='".$_POST['username']."' AND PASSWORD = '".md5($_POST['password'])."'";

[JordanMRichards]

use

mysql_real_escape_string()

- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
14 Year Old Programmer & Graphic Artist, Confident and Courageous

[minimihi]

Just a guess. Are you sure that, in this case, you need to use only single oci_fetch_array() mode option?
Did you give a try to

Code: Select all

OCI_RETURN_NULLS + OCI_ASSOC

istead of just

Code: Select all

OCI_RETURN_NULLS

?