...
...

How can I prevent SQL injection in PHP?

MySQL, Tutorials | 08 September 2018

Use prepared statements and parameterized queries. These are SQL statements that are sent to and parsed by the database server separately from any parameters. This way it is impossible for an attacker to inject malicious SQL.

View More