`any one please solve the sql injection occurs in this query..
please verifyenter image description here
I tried using positional parameter,
any one please tell solution to avoid sql injection in this query`
Asked
Active
Viewed 14 times
0
-
Why do you think there is risk of an injection attack in this query? Not much you can do if the SQL string itself can be modified by an attack, and we can't comment on the query itself if you don't show it. Otherwise, I don't see any injection possibilities with parameters done this way - jpa by default will bind in parameters, not put them inline – Chris Feb 08 '23 at 16:08