How Do You Prevent SQL Injection In Java Code?

Category Java | Asked By Arvind Vishwakarma | Asked On Jun 2, 2014 | 1 Answers
Answer using your Joblagao account

Leave your answer

or answer with facebook account
Arvind Vishwakarma answered| Jun 8, 2014

PreparedStatement is the way to go. PreparedStatement not only provides better performance but also shield from SQL Injection attack. If you are working more on Java EE or J2EE side, than you should also be familiar with other security issues including Session Fixation attack or Cross Site Scripting attack and how to resolve them.