I am converting Ray Camden's application and part of his
application is that the queries are not put into stored
procedures. I know there is SqlParameter, but how would I be
able to type out variables so that I don't have SQL
injection attacks?
Bob
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
~~~~~~~~~|
Message: http://www.houseoffusion.com/lists.cfm/link=i:44:2523
Archives:
http://www.houseoffusion.com/cf_lists/threads.cfm/44
Subscription: http
://www.houseoffusion.com/lists.cfm/link=s:44
Unsubscribe: http://www.houseoffusion.com/cf_lists/u
nsubscribe.cfm?user=22184.15789.44
Donations & Support: http://www.h
ouseoffusion.com/tiny.cfm/54
|