Notifications
 

How Do You Prevent SQL Injection In Java Code?

Category Java | Asked By Arvind Vishwakarma | Asked On Jun 2, 2014 | 1 Answers
 
Answer using your Joblagao account
 
Close

Leave your answer

 
or answer with facebook account
 
Arvind Vishwakarma answered| Jun 8, 2014

PreparedStatement is the way to go. PreparedStatement not only provides better performance but also shield from SQL Injection attack. If you are working more on Java EE or J2EE side, than you should also be familiar with other security issues including Session Fixation attack or Cross Site Scripting attack and how to resolve them.