how to prevent security leaks in my own created form which data I write

Question

0

Asked: May 13, 20262026-05-13T06:37:42+00:00 2026-05-13T06:37:42+00:00

how to prevent security leaks in my own created form which data I write

0

how to prevent security leaks in my own created form which data I write into my db?

Basicly I thought to replace the dangerous chars (”,””,~,….)… but I don’t know how to do that in a clean way for each formular element ( more than 20)…

I don’t know if asp.net provides an easy thing for that.? Ok the validators I do already some validation but at least I like to remove all all the dangerous and exotic chars.

I don’t like to make a replace function for each textbox in my formular… Hope there is an other solution which works for all simple and properly.

thank you

EDIT: OK. I do the insert with a function of the API of the CMS Kentico. So of course it’s paremeterized there.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-13T06:37:42+00:00

Editorial Team

2026-05-13T06:37:42+00:00Added an answer on May 13, 2026 at 6:37 am

You should to use parametrized queries; this way your user can’t inject SQL.

SqlCommand command = new SqlCommand(
    "SELECT * FROM Table WHERE ID=@Id", connection);
command.Parameters.AddWithValue("@Id", 1);

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

how to prevent security leaks in my own created form which data I write

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply