|
|
|
|
|
|
by Uchikoma
5465 days ago
|
|
|
Might sound strange but: Yes it is. Since the first JDBC DB drivers it's common sense to use prepared statements and not build a query on your own. Because of this SQL injection is a much much smaller problem in Java codebases than in PHP ones.
(this being a Java culture result more than a language one). |
|
|