http://admin.anggit.com/blog/post/52/php-pengamanan-terhadap-sql-injection.html?code_textarea=1