Sql injection protection of website develop in ASP and MS-Access RRS feed

  • Question

  • User2140234557 posted


    I have develop one website in asp and access.

    But now a day it is facing a problem of sql injection.

    So how can I protect the .asp pages from sql injection.

    I have gone through some of the post and get that some function have to written to overcome the sql injection.Function as below...

    function killChars(strWords)    
    dim badChars    
    dim newChars    
    badChars = array("select", "drop", ";", "--", "insert",      
    "delete", "xp_")    
    newChars = strWords    
    for i = 0 to uBound(badChars)    
    newChars = replace(newChars, badChars(i), "")    
    killChars = newChars    
    end function    

    Thanks in advance.Please help.

    How to write the function in the code.

    Wednesday, June 9, 2010 1:40 AM


  • User-1199946673 posted

    I have develop one website in asp

    But these forums are intended for ASP.NET related questions only, so please ask this question in a Classic ASP forum?


    • Marked as answer by Anonymous Thursday, October 7, 2021 12:00 AM
    Wednesday, June 9, 2010 8:40 AM