Protecting against SQL-injection attacks

Common vulnerabilities that make your data access code susceptible to SQL injection attacks include:

  • Weak input validation.

  • Dynamic construction of SQL statements without the use of type-safe parameters.

  • Use of over-privileged database logins.

Last updated