I am having SQL Injection Attack problems. Having researched the best prevention against this, the advice seems to be to use parameters in all SQL that uses user input.
How can I find out what ASP.NET Web Controls use parameters out-of-the-box: does the Login Control? The PasswordRecovery control? The CreateUserWizard?
banksidepoet
Participant
774 Points
862 Posts
Parameterised Security
Sep 21, 2011 06:41 PM|LINK
Hi.
I am having SQL Injection Attack problems. Having researched the best prevention against this, the advice seems to be to use parameters in all SQL that uses user input.
How can I find out what ASP.NET Web Controls use parameters out-of-the-box: does the Login Control? The PasswordRecovery control? The CreateUserWizard?
Thanks,
Mike