I have created a simple login form for a project in PHP and mySQL. I read about security and info about SQL Injections and XSS.
How can I test my form with these stuff ? I mean where I put it?
I found something like this ' or 1=1–
and SQL queries like
SELECT fieldlist
FROM table
WHERE field = '$EMAIL';
I know it's a silly question, but I don't know the answer!