This Bugzilla instance is a read-only archive of historic NetBeans bug reports. To report a bug in NetBeans please follow the project's instructions for reporting issues.
Detect SQL injection risks in PHP code. This is actually a big issue for PHP developers.
Reassigned to new owner.
This is not in the functional horizon of database support. While prevent SQL injections is just a matter of using the right tools: - prepared statements - manually quoted data - use only save values Detecting an sql injection is basicly hopeless without holding all the code - how should a scanner know, that my values are save by definition (for example just queried), that I escaped outside the analysed context, while this very complex, there is little gain. A developer missing the above tools will shoot himself no matter what.