Preventing SQL Injection


Posted on 16th Feb 2014 07:03 pm by admin

I have a question about SQL Injection, In some of our code we use this: view plaincopy to clipboardprint?Replace(inString, "'", "''") Replace(inString, "'", "''") does this prevent all forms of SQL Injection? Also what exactly does parameterized statements do?view plaincopy to clipboardprint?myCommand.Parameters.AddWithValue("@username", user); myCommand.Parameters.AddWithValue("@password", pass);

No comments posted yet

Your Answer:

Login to answer
202 Like 50 Dislike
Previous forums Next forums
Other forums

Small problem with image resize script
Hi!

I am a little bit new to php and I have an issue installing an image resize script I down

asp authentication problem
Hello all, I want to use the asp authentication (from asp.net configuration) in my web site. there

User feedback after MySQL query has been executed
Hi all, I've just registered on PHPFreaks because I've got a question that I simply can't work out b

Why does my php page download images over and over
Can anybody please explain to me why my php page keeps downloading the images and other items every

How to make a input/output field with multiple lines
Hello.
I put a input/output field on the screen but I could not change height of it. I need to

get font info from a font file
hello,

Does anyone know how to get font info from a font file ... using php of course !
<

How to know if online site made with PHP
Hello,
I see some sites that does not display extensions at all , for example:

www.site.co

Problem in back link
I have page where i have given javascript back link but when i click on it browser give a message

True way to see if action was successful?
If this is a good way to see if action was successful to continue:

Code: function changeGa

How to use Substr
I want to check for the word CATEGORY: inside a string which can be CATEGORY: ITEM
and remove the

Sign up to write
Sign up now if you have flare of writing..
Login   |   Register
Follow Us
Indyaspeak @ Facebook Indyaspeak @ Twitter Indyaspeak @ Pinterest RSS



Play Free Quiz and Win Cash