How can I modify the code to avoid SQL-injection attack?-CodePudding

Home > Software engineering > How can I modify the code to avoid SQL-injection attack?

How can I modify the code to avoid SQL-injection attack?

Time：08-24

I need to implement a fuzzy search for two fields, businessName and businessAddress. Both of them can be null. If one field is null, search should be based on the other field.

To be specific,

if businessName="name" and businessAddress="address" then execute select * from business where businessName like '%name%' and businessAddress like '


          
          
            Page link：https//www.codepudding.com/Softwareengineering/519363.html
          
          
               Prev:Converting "3H 30m" into 3.5
               Next:First 3 letters in caps and remaining letters in small case in a name -SQL


  
    
      
        
          
             Tags：  
java sql jdbc sql-injection               
        
      
    
  
 
    
      
        
        	
            	Related
            
                       
        
      
    
  

  
    
      
        
           Links：  
          CodePudding

            
      
    
  


  About Us:          Contact Us      Terms of Service      
Privacy Policy
  Copyright © 2010-2023，Powered By CodePudding