> Can anyone recommend a good way to filter " ' etc out of forms so on the > action page the SQL does not crash?
There's no need to filter single or double quotes out of the form to prevent sql from erroring unless you're also using PreserveSingleQuotes() ... CF escapes single quotes automatically and since the string is bound by single quotes, double-quotes produce no errors. Isaac Dealey Certified Advanced ColdFusion Developer www.turnkey.to 954-776-0046 ______________________________________________________________________ Structure your ColdFusion code with Fusebox. Get the official book at http://www.fusionauthority.com/bkinfo.cfm FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
