Sp_executesql and sql injection

Plateforme Level Extreme

Abonnement

Profil corporatif

Produits & Services

Support

Légal

English

Sp_executesql and sql injection

Message

26/05/2011 11:08:49

Mike Yearwood
Toronto, Ontario, Canada

18/05/2011 09:22:27

Naomi Nosonovsky
Wisconsin, États-Unis

Information générale

Forum:

Microsoft SQL Server

Catégorie:

Stored procedures, Triggers, UDFs

Titre:

Re: Sp_executesql and sql injection

Versions des environnements

SQL Server:

SQL Server 2008

Application:

Web

Divers

Thread ID:

01510894

Message ID:

01511833

Vues:

>I don't see a need to pull up a dirty accusation. My original reply was clear enough and I do know difference between passing parameters and embedding them into a string.
>
>So please stop answering me with this nonsense.

I wasn't talking to you in the first place. I don't associate with proven criminals, despite what the liberals feel.

Répondre

Fil

Voir

Click here to load this message in the networking platform