Check the online version, I often update my slides.

Talk detail

I v “bezpečném” frameworku se dá psát nebezpečně.

if ($city = $this->getParameter('city')) {
    $query->where(' = (%sql)', 'SELECT id FROM cities WHERE string = \'' . $city . '\'');

Details on the event website

Date and event

May 31, 2014, Poslední sobota, SmartSense – Wayra


Michal Špaček

Michal Špaček

I build web applications and I'm into web application security. I like to speak about secure development. My mission is to teach web developers how to build secure and fast web applications and why.

Public trainings

Come to my public trainings, everybody's welcome:

HTTPS for developers & admins
(December 7–8, 2022 )

PHP application security
(December 12–15, 2022 )