IIRC
#value# + '%'
Clinton
-Original Message-
From: Abhishek Pratap Singh08 [mailto:[EMAIL PROTECTED]
Sent: March-04-08 8:01 AM
To: user-java@ibatis.apache.org
Subject: Regarding SQL injection chaniging SELECT QUERY
Hi Again,
Suppose I have a query
Select * from table wh
Hi,
Select * from table where column LIKE CONCAT(#value#, '%')
Christian
-Original Message-
From: Abhishek Pratap Singh08 [mailto:[EMAIL PROTECTED]
Sent: Tuesday, March 04, 2008 10:01 AM
To: user-java@ibatis.apache.org
Subject: Regarding SQL injection chaniging SELECT QUERY
arry Meadors [mailto:[EMAIL PROTECTED]
Sent: Tuesday, March 04, 2008 6:18 PM
To: user-java@ibatis.apache.org
Subject: Re: Regarding SQL injection
Chapter 1
Don't use the replacement ($property$) syntax unless you scrub the input.
The end.
:-)
Larry
On Tue, Mar 4, 2008 at 3:05 AM, Abhish
Chapter 1
Don't use the replacement ($property$) syntax unless you scrub the input.
The end.
:-)
Larry
On Tue, Mar 4, 2008 at 3:05 AM, Abhishek Pratap Singh08
<[EMAIL PROTECTED]> wrote:
>
>
>
>
> Hi All,
>
> I need the guidelines of handling sql
> injection in i
Hi All,
I need the guidelines of handling sql injection
in iBatis. Any pdf or link will be very helpful.
Regards,
Abhishek
CAUTION - Disclaimer *
This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION intended solely
for
