locked
Sql injection protection of website develop in ASP and MS-Access RRS feed

  • Question

  • User2140234557 posted

    Hi,

    I have develop one website in asp and access.

    But now a day it is facing a problem of sql injection.

    So how can I protect the .asp pages from sql injection.

    I have gone through some of the post and get that some function have to written to overcome the sql injection.Function as below...

    <%    
       
    function killChars(strWords)    
       
    dim badChars    
    dim newChars    
       
    badChars = array("select", "drop", ";", "--", "insert",      
    "delete", "xp_")    
    newChars = strWords    
       
    for i = 0 to uBound(badChars)    
    newChars = replace(newChars, badChars(i), "")    
    next    
       
    killChars = newChars    
       
    end function    
       
    %>

    Thanks in advance.Please help.

    How to write the function in the code.


    Wednesday, June 9, 2010 1:40 AM

Answers

  • User-1199946673 posted

    I have develop one website in asp
     

    But these forums are intended for ASP.NET related questions only, so please ask this question in a Classic ASP forum?

    http://forums.iis.net/1032.aspx

    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Wednesday, June 9, 2010 8:40 AM