Parameterised queries or stored procedures, instead of dynamically generated queries, are used by web applications for database interactions.
- Topic
- Web application interaction with databases
- Applicable to
- all
History
- Priority
- should
- Dec 2023
- Parameterised queries or stored procedures, instead of dynamically generated queries, are used by web applications for database interactions.
- The existing control relating to the use of parameterised queries or stored procedures instead of dynamically generated queries was reworded.
- Mar 2023
- Parameterised queries or stored procedures, instead of dynamically generated queries, are used for database interactions.
- An existing control relating to the use of parameterised queries or stored procedures for database interactions was reworded to reduce confusion.
- 2015
- Parameterised queries or stored procedures should be used for database interaction insteadof dynamically generated queries.