The only way to prevent SQL injection is through validation of user input -- especially when it is meant to be used in an SQL statement. There are countless sites that offer detailed instructions on what you need to avoid. Simply do a web search for "SQL injection" and you will immediately find some very good resources.
Sent by jipi on 06/07/2006 01:10:03 AM:
Is there any tools with foxweb or Something,which prevent our script from SQL Injection.
If not, how can we do it ?