As the question goes, when the program saves, modifies or reads a certain piece of data into the database, how to prevent the program from being tampered with by malicious intrusion into the data? (For example, the original program wanted to add 10 to a user's experience value, but after being maliciously tampered with, the user's experience value increased by 100 or decreased by 100, etc.)
![[Web front-end] Node.js quick start](https://img.php.cn/upload/course/000/000/067/662b5d34ba7c0227.png)
Your question covers a wide range. During the interaction between the program and the database, the data may be intercepted and tampered with during transmission. It is also important whether the transmission protocol used is safe.
Also, you can go to Baidu for SQL injection;
You can assign different permissions to different users,