How do I prevent SQL injection with ColdFusion

Posted by Daniel A. White on Stack Overflow See other posts from Stack Overflow or by Daniel A. White
Published on 2010-04-07T13:19:45Z Indexed on 2010/04/07 13:23 UTC
Read the original article Hit count: 218

Filed under:
|
|
|

How do I prevent SQL injection when it comes to ColdFusion? I'm quite new to the language/framework.

Here is my example query.

<cfquery name="rsRecord" datasource="DataSource">
    SELECT * FROM Table
    WHERE id = #url.id#
</cfquery>

I see passing in url.id as a risk.

© Stack Overflow or respective owner

Related posts about coldfusion

Related posts about sql