25 Jun
2010
25 Jun
'10
8:55 a.m.
Hi Phil,
How susceptible is dao objects to sql injection and what measures would be suggested to prevent sql injection if it is possible with dao objects.
Unless I made a major blunder somewhere, proper use of s-sql and dao objects are completely safe from sql injection. (Improper use would be inserting an unescaped string using the :raw operator.) Best, Marijn