cocoon-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Ugo Cei <...@apache.org>
Subject Re: SQL Transformer - how to prevent injecting?
Date Fri, 12 Nov 2004 13:22:26 GMT
Il giorno 12/nov/04, alle 13:14, Ilya Vyatkin ha scritto:

> In my web-application SQL Transformer takes user input and uses it "as
> is" in its request string.
> Are there simple ways to process user input to prevent SQL Injection?

Use <esql:parameter>.

	Ugo

-- 
Ugo Cei - http://beblogging.com/

Mime
View raw message