SQL injection occurs when user input is not filtered for escape characters and is then passed into an SQL statement
////Through this you can remove sqlinjection problem
Example
String name = txtUserId.Text.Trim().Replace("'", "''");
String Password = txtPassword.Text.Trim().Replace("'", "''");
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment