Date:  06/09/2006 07:43:40 AM Msg ID:  002975
From:  FoxWeb Support Thread:  002968
Subject:  Re: FOXWEB AND SQL INJECTION
Can you provide examples of products that provide such tools?  Do they simply offer a character translation function that escapes quotes and other special SQL characters?

FoxWeb Support Team
support@foxweb.com email

Sent by jipi on 06/07/2006 11:16:52 PM:
Yes,
In fact, there is much technique of programming to do it, but some techno. have their own objects allowing to do it.
 
No problem, if Foxweb doesn't have it own object, we will program it.
Thank you to have answered.
 
 
Sent by FoxWeb Support on 06/07/2006 09:54:37 PM:
The only way to prevent SQL injection is through validation of user input -- especially when it is meant to be used in an SQL statement.  There are countless sites that offer detailed instructions on what you need to avoid.  Simply do a web search for "SQL injection" and you will immediately find some very good resources.

FoxWeb Support Team
support@foxweb.com email

Sent by jipi on 06/07/2006 01:10:03 AM:
Hi,
Is there any tools with foxweb or Something,which prevent our script from SQL Injection.
 
If not, how can we do it ?