Preventing SQL Injection

Posted on 16th Feb 2014 07:03 pm by admin

I have a question about SQL Injection, In some of our code we use this: view plaincopy to clipboardprint?Replace(inString, "'", "''") Replace(inString, "'", "''") does this prevent all forms of SQL Injection? Also what exactly does parameterized statements do?view plaincopy to clipboardprint?myCommand.Parameters.AddWithValue("@username", user); myCommand.Parameters.AddWithValue("@password", pass);

No comments posted yet

Your Answer:

Login to answer

202

Like

50

Dislike

Previous forums

Next forums

Other forums

Logic question
im wondering what's the best method to do the above list:

it is for alliance @ MMORPG game

filesize() returns 0
I have a socket program that runs in an infinite loop, listening for connections, in this socket I h

Month String to Numeric?
Hi guys,

Given a month as a string, is there a simple way to find the numeric representation

Replica Patek Damernas klockor : replika Patek Philippe klockor, replicapatekonline.com
[b][url=http://sv.replicapatekonline.com/]Replica Patek Philippe Calatrava[/url][/b] [b][url=http://

How do I replace any number of character occurences with one occurrence?
How do I replace any number of character occurences with one occurrence?

Let's say I have:

Sign up to write

Sign up now if you have flare of writing..

Login | Register

Follow Us

Indyaspeak @ Facebook

Indyaspeak @ Twitter

Indyaspeak @ Google+

Indyaspeak @ Pinterest

Follow @indyaspeak