Skip to main content

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]
Re: [eclipselink-users] Avoid SQL Injection on NativeQueries

Not sure what you are referring to, perhaps more details.

In general binding is used by default in EclipseLink.  Parameters are
defined by "?" in native queries.

Edilson-2 wrote:
> Hi List,
> I'm using DB2. to Optimize Query response time, im calling a procedure
> which have 3 params, i want to avoid SQL Injection using EclipseLink
> Methods.
> Where can i find this? or, do you have suggestions to avoid SQL Injection?
> Best regards,
> -- 
> John Arévalo
> GNU/Linux User #443701

--- James Sutherland
 EclipseLink ,
Wiki: EclipseLink , TopLink 
Forums: TopLink , EclipseLink 
Book: Java Persistence 
View this message in context:
Sent from the EclipseLink - Users mailing list archive at

Back to the top