SQL injection is one of the most common security vulnerabilities for web applications today. This article shows ways to solve the problem, including a new technique called “Disabling Literals”, and lists new attacks.
Eddie, Thanks for steering people to my codegen link. I agree that it is really important to avoid writing code whenever you can generate it, and table APIs are especially good candidates for generation.
HOWEVER, I really need to update that page. Because PL/Generator is very old and is completely superseded and improved upon by the freeware Quest CodeGen Utility:
I know CodeGen can be a real time saver. In our company we are using CodeGen to generate pieces of Delphi Code for our framework application. We are also using CodeGen to generate QDA packages to build code easier. If you have any questions, don’t hesitate to ask ;-).