• Open Menu Close Menu
  • Apple
  • Shopping Bag
  • Apple
  • Mac
  • iPad
  • iPhone
  • Watch
  • TV
  • Music
  • Support
  • Search apple.com
  • Shopping Bag

Lists

Open Menu Close Menu
  • Terms and Conditions
  • Lists hosted on this site
  • Email the Postmaster
  • Tips for posting to public mailing lists
Sanitizing SQL string
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Sanitizing SQL string

  • Subject: Sanitizing SQL string
  • From: Miguel Arroz <email@hidden>
  • Date: Thu, 24 Jan 2008 16:03:40 +0000
Hi!

I need to do an SQL query to do a batch operation on the DB (yes yes, I know, but trust me, I know what I'm doing).

Usually I only have to deal with PKs and integers and so, but on this specific query I have to handle a text string match (ie, UPDATE blabla WHERE something = 'myText' ). How do I propertly sanitize the string (and escape it and whatever) before sending it to the SQL query? I'm trying to avoid this: <http://farm3.static.flickr.com/ 2160/1619915433_fdca91a23e.jpg>.

  Yours

Miguel Arroz

Miguel Arroz
http://www.terminalapp.net
http://www.ipragma.com



Attachment: smime.p7s
Description: S/MIME cryptographic signature

 _______________________________________________
Do not post admin requests to the list. They will be ignored.
Webobjects-dev mailing list      (email@hidden)
Help/Unsubscribe/Update your Subscription:

This email sent to email@hidden
  • Follow-Ups:
    • Re: Sanitizing SQL string
      • From: Chuck Hill <email@hidden>
  • Prev by Date: Re: [Wonder-disc] Eclipse don't cuild with Ant
  • Next by Date: Re: Sanitizing SQL string
  • Previous by thread: Re: [Wonder-disc] Eclipse don't cuild with Ant
  • Next by thread: Re: Sanitizing SQL string
  • Index(es):
    • Date
    • Thread