Hello,
Should I worry about SQL Injections when I am using a Criteria object
in the following way?
-=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-=
public List example (String input) throws TorqueException
{
Criteria criteria = new Criteria ();
criteria.add (ExamplePeer.PKEY, (Object) input, Criteria.EQUAL);
return ExamplePeer.doSelect (criteria);
}
-=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-= -=-=
Is the Criteria object escaping the input string for me?
--
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
