.

Proof of concept: Parsing queries to detect SQL injections

Some time ago I wrote a simple PDO query inspector, which will parse every SQL query of your application and search for constant query parts. Those constant query parts are not necessarily SQL injections - but it might be a good development tool, to collect potentially problematic query.

Read more in the "inspecting PDO queries" blog post in our Shopware blog or check out my PDO inspector repository.