Which of the following would offer protection against an SQL injection attack? (choose two)
[5920,5923]
Correct:
--> mysql_real_escape_string()
--> using PDO and prepared statements
One of the answers here isn't a real PHP function (option B, mysql_true_escape_string) and the others aren't effective against SQL attacks (although they're great in other security-related uses)