> article on cfqueryparam and it seems that it is meant to go
> to the right of a where clause in a cfquery statement. I am
> really not sure how/why to use it.
You simply use it anywhere you would otherwise use a CF variable within your
SQL statement. For example:
WHERE MyID = #Form.MyID#
becomes:
WHERE MyID = <cfqueryparam cfsqltype="cf_sql_integer" value="#Form.MyID#">
Note that you don't use single quotes around CFQUERYPARAM, even when working
with string or date values.
Dave Watts, CTO, Fig Leaf Software
http://www.figleaf.com/
phone: 202-797-5496
fax: 202-797-5444
[Todays Threads] [This Message] [Subscription] [Fast Unsubscribe] [User Settings] [Donations and Support]
