SmartDump

Security

Last updated January 14, 2026

Built-in Security Features


  1. ✅ Input validation on all user inputs
  2. ✅ SQL injection prevention (prepared statements)
  3. ✅ Path traversal protection (basename, realpath checks)
  4. ✅ XSS prevention (htmlspecialchars on output)
  5. ✅ File type validation (whitelist)
  6. ✅ CSRF protection via session validation
  7. ✅ Optional IP whitelist
  8. ✅ .htaccess protection for upload directories


Security Best Practices


  1. Delete SmartDump after use - Most important!
  2. Use strong database passwords
  3. Enable IP whitelist in production
  4. Only use on trusted networks
  5. Review SQL files before importing
  6. Keep backups before importing
  7. Don't leave uploaded files on server