-->
These old forums are deprecated now and set to read-only. We are waiting for you on our new forums!
More modern, Discourse-based and with GitHub/Google/Twitter authentication built-in.

View unanswered posts | View active topics


Board index » Hibernate & Java Persistence » Hibernate Users

All times are UTC - 5 hours [ DST ]


Forum locked This topic is locked, you cannot edit posts or make further replies.  Page 1 of 1
  [ 2 posts ] 
  Previous topic | Next topic 
Author Message
avartanian
 Post subject: SQL Injections
PostPosted: Thu Feb 16, 2006 9:51 pm 
Newbie

Joined: Mon Jun 06, 2005 11:21 pm
Posts: 10
Are there any situations in Hibernate where I'd need to worry about SQL injection attacks? In HQL? In transparent persistence?
Top
 Profile  
 
the-gtm
 Post subject:
PostPosted: Fri Feb 17, 2006 12:59 pm 
Regular
Regular

Joined: Wed Feb 08, 2006 3:59 pm
Posts: 75
As long as you use the prepared statement style Query.setString(), Criterieas etc. and not build queries with String manipulations ("from User u where u.login='" + login + "'"), you should be safe
Top
 Profile  
 
Display posts from previous:  Sort by  
Forum locked This topic is locked, you cannot edit posts or make further replies.  Page 1 of 1
  [ 2 posts ] 

Board index » Hibernate & Java Persistence » Hibernate Users

All times are UTC - 5 hours [ DST ]

You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum

Search for:
© Copyright 2014, Red Hat Inc. All rights reserved. JBoss and Hibernate are registered trademarks and servicemarks of Red Hat, Inc.