This week's book giveaway is in the OCPJP forum. We're giving away four copies of OCA/OCP Java SE 7 Programmer I & II Study Guide and have Kathy Sierra & Bert Bates on-line! See this thread for details.
I am using prepared statement to get data from the database. Does anybody knows of any way to do a SQL injection because in a prepared statement, whatever I enter if is using that as a search criteria. Thanks, Anjali