sql injection in JDBC direct connection with mssql server
posted 10 months ago
Hi, I found tutorials with JDBC at This Android Login With JDBC site. Also, these tutorials are concatenating query with variables. My question is this, is this a bad technique? i read sql injection is applicable on these type of queries. Is it right? I am newbie, waiting for the answer. !