Ars Technica

Dealing with commas and apostrophes in string input for SQL statements using ASP

Anyone know how to work with commas and apostrophes coming in as input from a form, and inserting this data into a record using SQL in ASP? If the user enters data with an apostrophe into a text box, ...
TechRepublic

Analyzing SQL Meta Characters and Preventing SQL Injection Attacks Using Meta Filter

SQL Injection Attacks (SQLIA) are widely used in which an attacker crafts input to the application server to access or modify data on the database server. A common approach for an attacker to launch ...