none
Handle SqlInjection in DataView.RowFilter RRS feed

  • Question

  • Hi,

    How to handle sql injection in row filter property.

    table.DefaultView.RowFilter =

    "NAME LIKE '" + filterString + "%'";

    is filterString can be injected??
    and if yes how can this handled?


    Akram MellIce
    Monday, November 16, 2009 11:49 AM

Answers

All replies