Title: Security Question: SQL Injections
Last modified: August 21, 2016

---

# Security Question: SQL Injections

 *  Resolved [KW923](https://wordpress.org/support/users/kw923/)
 * (@kw923)
 * [12 years, 9 months ago](https://wordpress.org/support/topic/security-question-sql-injections/)
 * Hi,
 * I have heard about the importance of properly sanitizing or preparing SQL Queries
   while developing plugins. I’m just not sure if I understand how to do it. I’ve
   created my query which takes the page titles and flushes them from the database.
   The plugin is supposed to allow the user to create new page titles in a custom
   form by using wp_insert_post.
 * How do I sanitize/validate the page title input that will be sent to the database?
 *     ```
       global $wpdb;
       	$args['menu_order'] = $wpdb->get_var("SELECT MAX(menu_order)+1 AS menu_order FROM {$wpdb->posts} WHERE post_type='page'");
       	$wpdb->flush();
       ```
   

Viewing 3 replies - 1 through 3 (of 3 total)

 *  Moderator [t-p](https://wordpress.org/support/users/t-p/)
 * (@t-p)
 * [12 years, 9 months ago](https://wordpress.org/support/topic/security-question-sql-injections/#post-4106354)
 *  Thread Starter [KW923](https://wordpress.org/support/users/kw923/)
 * (@kw923)
 * [12 years, 9 months ago](https://wordpress.org/support/topic/security-question-sql-injections/#post-4106390)
 * Great resource, thanks for sharing!
 *  Moderator [t-p](https://wordpress.org/support/users/t-p/)
 * (@t-p)
 * [12 years, 9 months ago](https://wordpress.org/support/topic/security-question-sql-injections/#post-4106400)
 * you are welcome 🙂

Viewing 3 replies - 1 through 3 (of 3 total)

The topic ‘Security Question: SQL Injections’ is closed to new replies.

## Tags

 * [sql injections](https://wordpress.org/support/topic-tag/sql-injections/)

 * In: [Hacks](https://wordpress.org/support/forum/plugins-and-hacks/hacks/)
 * 3 replies
 * 2 participants
 * Last reply from: [t-p](https://wordpress.org/support/users/t-p/)
 * Last activity: [12 years, 9 months ago](https://wordpress.org/support/topic/security-question-sql-injections/#post-4106400)
 * Status: resolved

## Topics

### Topics with no replies

### Non-support topics

### Resolved topics

### Unresolved topics

### All topics