Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Parameterized queries WITHOUT stored procedures?

Tags:

sql

parameterized

asp-classic

vbscript

Every sample I've seen uses stored procedures. I've adopted an old application written in Classic ASP that uses inline SQL. This is an obvious issue, so I need to convert it to safer code. The client does not wish that I use stored procedures in this application, so is there a way to run parameterized queries without stored procedures?

Thanks

like image 526
Chris Avatar asked Jul 27 '09 12:07

Chris

1 Answers

Yes, there is. Have a look at some of these examples:

http://www.securestate.blogspot.com/2008/09/classic-asp-sql-injection-prevention_30.html http://www.userfriendlythinking.com/Blog/BlogDetail.asp?p1=7013&p2=119&p7=3001

like image 190
AdaTheDev Avatar answered Nov 19 '22 16:11

AdaTheDev
Sign in to Comment

Related questions

What is the OleDb equivalent for INFORMATION_SCHEMA
How to format Oracle SQL text-only select output
Finding difference in row count of two tables in MySQL
Remove duplicate from a table
Is there any way to get a list of open/allocated cursors in SQL server?
UPDATE using two tables, Concatenation
Updating a table within a select statement
In Sql Server, how to convert binary strings to binary?
Problems with Turkish SQL Collation (Turkish "I")
SQL Server, where clauses comparisons with different types & default casting behaviour
Oracle Form Builder: Switching between tabs in a form
SQL Many-to-Many Query Problem
SQL sort with limit? (non trivial)
How to add data to two tables linked via a foreign key?
connection string for remote database server
sql async query problem
OO or procedural
Connection Leak in C# DataBase.ExecuteScalar
LINQ to SQL: Concurrency resolution
MySQL workbench : How to export mysql database to .sql file?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!