I would like to search for a particular pattern in my SQL , so

Question

0

Asked: May 28, 20262026-05-28T21:31:52+00:00 2026-05-28T21:31:52+00:00

I would like to search for a particular pattern in my SQL , so

0

I would like to search for a particular pattern in my SQL , so that it starts only with SELECT and not with INSERT , UPDATE , DELETE.

How can i achieve this using JQuery , I would like to use JQuery to do a case insensitive matching of the string.

EDIT

I would also like to consider subqueries also.

Therefore my requirement is that the query should not contain any INSERT , UPDATE , DELETE statements anywhere.
It should contain only SELECT statments

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-05-28T21:31:53+00:00

I’ll use a whitelist for that, rather than a blacklist:

function isValidQuery(str) {
  return /^select\s+([a-z_*]+,?)+\s+from\s+[a-z_]+$/i.test(str);
}

This only matches queries of the form SELECT field, [field, ...] FROM table. This can also be extended to allow certain kinds of WHERE or GROUP BY specifiers. If this isn’t enough, you could also use a much stricter blacklist:

function isValidQuery(str) {
  if (/delete|update|insert|truncate|create|drop/i.test(str)) return false;
  // possibly more excluding rules...
  return true;
}

If you want to protect your data with this, I certainly wouldn’t rely on the second method, as it can probably be circumvented (you forgot a dangerous command, SQL smuggling, …) A much better approach would be to create a dedicated database user that only has read access to the tables you want to be available via this interface.

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I would like to search for a particular pattern in my SQL , so

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply