|
This is a very quick way to protect your asp and your sql databases from common sql injection characters and phrases. Use code at time of form submission after I do javascript validations (which are not always safe) and before I connect to the databases. Code: ASP 2.0 & VBScript |
| |
Overall Rating:
 User
Rated
| |
So easy, no excuse not to use it
Written by Anonymous User (#1602-231) from KS (Saturday, December 27, 2008)
 |
Strengths: Easy, easy, easy. Just place it between where your form received the info and processes it
Weaknesses: Doesn't leap tall buildings in a single bound
Details: SQL injection is something we need to be very careful about preventing, when coding for database interactions. This nifty bit of code makes this very easy, by iterating through all fields received from a form, and examining them for malicious characters. If the code contains bad characters, the script stops the processing.
Review Based On: 1 Hour(s) of usage |
| |
|
