Quoting [EMAIL PROTECTED], "[EMAIL PROTECTED]" <[EMAIL PROTECTED]>: > > This behavior isn't a bug, although I can't explain why your code works in CF 5.
I would disagree. I think it is a bug. > CF's normal behavior is to escape a single quote contained in a SQL string > value by doubling it. This is true whether you use the Trim() function or > not. So you'll want to use PreserveSingleQuotes() to prevent CF from > automatically escaping the single quotes in your SQL string values. But not when using cfqueryparam. Using cfqueryparam is meant to call the functionality of the database driver to do the escaping. Any escaping done by CF before that will only result in doubling the quotes twice, and therefore CF should do no escaping whatsoever of any value passed through cfqueryparam. Jochem ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Archives: http://www.houseoffusion.com/cf_lists/index.cfm?forumid=4 Subscription: http://www.houseoffusion.com/cf_lists/index.cfm?method=subscribe&forumid=4 FAQ: http://www.thenetprofits.co.uk/coldfusion/faq This list and all House of Fusion resources hosted by CFHosting.com. The place for dependable ColdFusion Hosting. Unsubscribe: http://www.houseoffusion.com/cf_lists/unsubscribe.cfm?user=89.70.4
