开发者

Can VBA in Ms Access using parameter to prevent sql injection?

开发者 https://www.devze.com 2023-03-21 22:59 出处:网络
I\'m currently building a system with Ms Access. Since it\'s important to avoid sql injection, I want to use开发者_JAVA百科 paramerters as VB.NET too, but I wonder if it could be or not. If so, I woul

I'm currently building a system with Ms Access. Since it's important to avoid sql injection, I want to use开发者_JAVA百科 paramerters as VB.NET too, but I wonder if it could be or not. If so, I would be appreciate if you show me at least the sql statement inserting data from controls to the database using parameters, and If it can't be, would anyone show me the other ways?

I would be appreciate for any recommendation, thanks..


This INSERT statement declares a Date/Time PARAMETER using a text box "txtStartDate" on an open form named "frmDatePicker", and inserts that value into MyTable.

PARAMETERS [Forms]![frmDatePicker]![txtStartDate] DateTime;
INSERT INTO MyTable ( date_field )
VALUES ([Forms]![frmDatePicker]![txtStartDate]);
0

精彩评论

暂无评论...
验证码 换一张
取 消