Paul Sheriff's Blog for the Real World

This blog is for my ramblings and to share my tips, tricks and advice garnered over 20+ years in the IT industry. I like to focus on topics that affect real-world business application developers.

Browse by Tags

All Tags » SQL » .NET (RSS)
Using Parameters with Dynamic SQL
Some programming situations require you to use Dynamic SQL. Of course the problem with using Dynamic SQL is that this can lead to SQL Injection attacks. However, you can avoid these problems, by just changing how you submit Dynamic SQL to your back end...
Posted: Aug 31 2009, 01:08 PM by psheriff | with no comments
Filed under: , ,
More Posts