• Post Reply Bookmark Topic Watch Topic
  • New Topic

Hibernate SQL Injection  RSS feed

 
ed suttner
Greenhorn
Posts: 13
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
My manager wants to know if our code is vunerable to sql injection. With straight JDBC, I know that using Prepared Statements (bind variables) will help. We do have some hibernate in which I am not that familar with. It looks like hibernate has prepared statements, so using those will minimize SQL injection like in JDBC? Thanks!
 
It is sorta covered in the JavaRanch Style Guide.
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!