Level Extreme platform
Subscription
Corporate profile
Products & Services
Support
Legal
Français
WestWind/database filter help
Message
 
To
27/06/2011 15:46:22
Al Doman
M3 Enterprises Inc.
North Vancouver, British Columbia, Canada
General information
Forum:
Visual FoxPro
Category:
Coding, syntax & commands
Title:
Re: WestWind/database filter help
Miscellaneous
Thread ID:
01516279
Message ID:
01516358
Views:
66
>>Look at SQLEXEC() function.
>>
>>Also, it's bad practice to embed parameters into your sql query. It opens you up to SQL injection attacks.
>
>http://xkcd.com/327/

I have always loved this XKCD.

Technically he's wrong. He should say parameterize but sanitize fits in the space better :)

http://select-into.blogspot.com/2011/01/little-bobby-tables.html
Brandon Harker
Sebae Data Solutions
Previous
Next
Reply
Map
View

Click here to load this message in the networking platform