aspose file tools*
The moose likes JDBC and the fly likes sql injection Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of EJB 3 in Action this week in the EJB and other Java EE Technologies forum!
JavaRanch » Java Forums » Databases » JDBC
Bookmark "sql injection" Watch "sql injection" New topic
Author

sql injection

fang eve
Greenhorn

Joined: Jun 22, 2006
Posts: 26
how to prevent sql injection from my application? i read about 1 site saying using prepared statement. Any other way to do it?
Jeroen T Wenting
Ranch Hand

Joined: Apr 21, 2006
Posts: 1847
validate all your input for correctness.


42
Bear Bibeault
Author and ninkuma
Marshal

Joined: Jan 10, 2002
Posts: 60041
    
  65

fang, please take the time to choose appropriate forums for your posts.

I've moved this one to the JDBC forum.


[Asking smart questions] [Bear's FrontMan] [About Bear] [Books by Bear]
Ulf Dittmer
Marshal

Joined: Mar 22, 2005
Posts: 39535
    
  27
The Security FAQ links to two articles on SQL injection.


Ping & DNS - updated with new look and Ping home screen widget
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: sql injection
 
Similar Threads
PreparedStatement - to use or not to use
Using strings within strings to read vars?
Does this sound believable?
Struts and SQL Injection.
avoid sql injection