Ars Technica

Dealing with commas and apostrophes in string input for SQL statements using ASP

Anyone know how to work with commas and apostrophes coming in as input from a form, and inserting this data into a record using SQL in ASP? If the user enters data with an apostrophe into a text box, ...
dbta

Harden Your Applications to Combat SQL Injection

An important aspect of database security is designing your applications to avoid SQL injection attacks. SQL injection is a form of web hacking whereby SQL statements are specified in the fields of a ...