Nahidur Rahman Rifath

 The Problem: One Input Box Can Expose Your Entire Database SQL Injection is still one of the top threats in .NET applications, especially when developers build SQL queries by string concatenation. Here’s a classic mistake: string query = "SELECT * FROM Users WHERE Email = '" + email + "' AND Password = '" + password + "'"; If an attacker types this into the email field: ' OR 1=1 -- The query turns into: SELECT * FROM Users WHERE Email = '' OR 1=1 --' AND Password = '' Result: The attacker bypasses login or retrieves all users—a full data breach with one input.   ✅ The Solution: Use Parameterized Queries with ADO.NET or Entity Framework The safest and most effective solution in .NET is parameterized queries. They keep SQL logic and data separate, making injection impossible.   🔐 Example with ADO.NET: using (SqlConnection conn = new SqlConnection(connectionString)) {     SqlCommand cmd...

 In today’s web-driven world, data breaches often begin with one overlooked flaw— SQL injection . It’s one of the most common attacks against PHP websites, and the worst part? It can happen with just a simple text input.   🚨 The Problem: A Tiny Input Field, a Massive Security Risk Imagine you’re building a PHP login page. A user enters their email and password, and your code does something like this: $email = $_POST['email']; $password = $_POST['password']; $sql = "SELECT * FROM users WHERE email = '$email' AND password = '$password'"; Seems harmless, right? Now, a malicious user types this into the email field: ' OR 1=1 -- The resulting SQL becomes: SELECT * FROM users WHERE email = '' OR 1=1 --' AND password = '' The attacker bypasses your login completely—gaining access to any user account.   ✅ The Solution: Use Prepared Statements with PDO Prepared statements prevent SQL injection by...

Artificial Intelligence (AI) is transforming the world of software development, making it faster and more efficient. For developers, AI tools can enhance productivity, reduce errors, and optimize the coding process. From intelligent code suggestions to debugging assistance, these tools are changing the way developers work. In this article, we will explore the top five AI tools that every developer should use to boost coding efficiency.   Why AI Tools Are Essential for Developers The complexity of modern software projects means developers often face tight deadlines, complicated codebases, and constant updates. This is where AI tools come in. They help automate repetitive tasks, improve accuracy, and provide intelligent insights that can significantly speed up development time.  Whether you’re a seasoned developer or just starting, incorporating AI tools into your workflow can lead to more efficient and high-quality code.    1. GitHub Copilot   ...

In the realm of web development, achieving optimal performance is a constant pursuit. Leveraging caching effectively is a cornerstone in this endeavor, particularly with the robust capabilities offered by .NET Core. We'll explore practical implementation examples alongside best practices for .NET Core caching to demystify the process and empower developers. Understanding Caching in .NET Core: Before implementing, let's grasp the essence of caching in .NET Core. Caching involves storing frequently accessed data in memory, thereby reducing retrieval time and enhancing application responsiveness. .NET Core provides diverse mechanisms like in-memory caching, distributed caching, and response caching to cater to different scenarios. 1. Choosing the Right Mechanism: Let's begin with a simple example of in-memory caching. Suppose we have a method that fetches user details from a database: using Microsoft.Extensions.Caching.Memory; public class UserService { private readonly I...

Here is the step to merge two git repositories: Let's say you have a project name X and another project name Y with same codebase but some different commit ahead/ behind of project X. So you want to merge all the code from project-Y to project-X. Let's assume you are already in the project-X. git remote add project-Y path/to/project-Y  git fetch project-Y --tags git merge --allow-unrelated-histories project-Y/master  (note: Mention the branch name you want to merged with) git remote remove project-Y Thank you

Here is the command for SQL update column with value from another table UPDATE t1 SET      t1.Column = t2.Column, FROM      TableOne t1      INNER JOIN TableTwo t2      ON t1.Column = t2.Column; Go

To Delete all elements in the repository, use the following command $ git rm -r * then: $ git commit -m 'Delete all the stuff from repository'

For Those who have problem using  string_split function in SQL Server 2008R2 CREATE FUNCTION dbo.string_split (     @stringToSplit VARCHAR(MAX),     @separator VARCHAR(MAX) ) RETURNS   @returnList TABLE ([value] [nvarchar] (500)) AS BEGIN  DECLARE @name NVARCHAR(255)  DECLARE @pos INT  WHILE CHARINDEX(@separator, @stringToSplit) > 0  BEGIN   SELECT @pos  = CHARINDEX(@separator, @stringToSplit)    SELECT @name = SUBSTRING(@stringToSplit, 1, @pos-1)   INSERT INTO @returnList   SELECT @name   SELECT @stringToSplit = SUBSTRING(@stringToSplit, @pos+1, LEN(@stringToSplit)-@pos)  END  INSERT INTO @returnList  SELECT @stringToSplit  RETURN END

Though its a rare situation when we need to know the number of columns in a table. You can get the number of columns information for a particular table by running the following query on SQL Server SELECT COUNT(*) FROM INFORMATION_SCHEMA.COLUMNS WHERE table_catalog = ' Your_Database_Name '  AND table_name = ' Your_Table_Name ' Good luck!

Those who wants to generate random dates between two date ranges in SQL Server can use the following query: DECLARE @FromDate DATETIME = DATEADD(DAY, -2, '2011-01-01') DECLARE @ToDate   DATETIME = DATEADD(DAY, -1, '2017-01-01') DECLARE @Seconds INT = DATEDIFF(SECOND, @FromDate, @ToDate) DECLARE @Random INT = ROUND(((@Seconds-1) * RAND()), 0) DECLARE @Milliseconds INT = ROUND((999 * RAND()), 0) SELECT DATEADD(MILLISECOND, @Milliseconds, DATEADD(SECOND, @Random, @FromDate)) Hope it works for you!

Many of us some times wants to know that where a specific column is located as reference to other tables or views. If this is the case for you, then you can execute the following query:  Just replace the YourColumnName with your desired column name.  SELECT      COLUMN_NAME AS 'ColumnName' , TABLE_NAME AS  'TableName' FROM          INFORMATION_SCHEMA.COLUMNS WHERE       COLUMN_NAME LIKE '% YourColumnName %' ORDER BY  TableName , ColumnName; Please note that, if you follow the convention to place every where with same column name, then it will brings good output result for you. Thanks

Most of us will saw this error message in web browser console while working with ASP.NET WEB API. The reason behind this error is CORS. That means Cross Origin Resource Sharing. When we try to access a web service from our application, if the application domain and the web service domain is different, then this problem will be occurs. For example: Suppose our application is running on www.examplesite.com from where we are trying to access the web service which domain address is www.exampleservice.com/api/employee . Since the domain address is different, it through the error. What we can do? In our Web API Application: 1. Go to Tools 2. Nuget Package Manager 3. Package Manager Console 4. Write  install-package Microsoft.AspNet.WebApi.Cors 5. Now go to WebApiConfig.cs file 6. Paste the following lines: EnableCorsAttribute  cors =  new   EnableCorsAttribute ( "*" ,  "*" ,  "*" ); config.EnableCors(cors); and you are DONE!

While you facing an interview for ASP.NET Developer, you might be asked several question related to ASP.NET and other development area. Here i am sharing a good source of information for some sample  ASP.NET Interview Questions And Answers . Hope it will help you all a lot. 

Sometimes we need some sql server query which is really hard to find from the internet in one place. Here in this link, you can find  50 Important Queries in SQL Server.